CVE-2024-25292

Cross-site scripting XSS vulnerability in RenderTune v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Upload Title parameter...

CVE-2024-25292

Cross-site scripting XSS vulnerability in RenderTune v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Upload Title parameter...

CVE-2024-25292

Cross-site scripting XSS vulnerability in RenderTune v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Upload Title parameter...

CVE-2024-25292

Cross-site scripting XSS vulnerability in RenderTune v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Upload Title parameter...

CVE-2024-25292

Cross-site scripting XSS vulnerability in RenderTune v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Upload Title parameter...

RenderTune Security Vulnerability

RenderTune is a free electronic application for Mac/Windows/Linux that uses ffmpeg to combine audio + image files into video files. A security vulnerability exists in RenderTune v1.1.4, which stems from a cross-site scripting XSS vulnerability. An attacker can exploit this vulnerability to execut...

CVE-2024-25292

CVE-2024-25292 : RenderTune v1.1.4 is affected by a cross-site scripting (XSS) vulnerability that allows an attacker to inject arbitrary scripts via the Upload Title parameter. Public details include a PoC/exploit repo illustrating the XSS path and potential RCE implications in related examples. ...

PT-2024-8848 · Unknown · Rendertune

Name of the Vulnerable Software and Affected Versions: RenderTune version 1.1.4 Description: The issue is related to a Cross-Site Scripting XSS vulnerability. It occurs due to inadequate protection of the web page structure when handling the Upload Title parameter. This allows a remote attacker t...