2 matches found
CVE-2024-34089
An issue was discovered in Archer Platform 6 before 2024.04. There is a stored cross-site scripting XSS vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data store. When...
CVE-2024-34089
CVE-2024-34089 concerns Archer Platform 6 prior to 2024.04 with a stored cross-site scripting (XSS) flaw. A remote authenticated Archer user can inject malicious HTML/JavaScript into a trusted application data store, which is then executed by victims’ browsers in the vulnerable app’s context. The...