Vulnerability CVE-2024-25506
Published: 2024-03-28

Description:
Cross Site Scripting vulnerability in Process Maker, Inc ProcessMaker before 4.0 allows a remote attacker to run arbitrary code via control of the pm_sys_sys cookie.

 References:
https://medium.com/%40proflamyt/cve-2024-25506-425ba3212fb6
Copyright 2024, cxsecurity.com

 

Back to Top