Vulnerability CVE-2024-27705


Published: 2024-04-03   Modified: 2024-04-04

Description:
Cross Site Scripting vulnerability in Leantime v3.0.6 allows attackers to execute arbitrary code via upload of crafted PDF file to the files/browse endpoint.

 References:
https://github.com/b-hermes/vulnerability-research/tree/main/CVE-2024-27705

Copyright 2026, cxsecurity.com

 

Back to Top