CVE-2024-46083
Scriptcase versions ≤ 9.10.023 are vulnerable to Cross-Site Scripting (XSS) via the messaging feature. An authenticated user can craft payloads that inject code into other users’ accounts, and regular users can trigger actions for administrator users. The vulnerability is confirmed across multipl...