CVE-2024-6581
Summary: CVE-2024-6581 matches a vulnerability in Lollms (v9.9) where the SVG upload filter in sanitize_svg fails to neutralize all SVG-based vectors, enabling cross-site scripting (XSS) and potentially remote code execution when an authorized user accesses a crafted SVG URL. What’s affected: Lol...