2 matches found
CVE-2024-30879
Reflected Cross Site Scripting XSS vulnerability in RageFrame2 v2.6.43, allows remote attackers to execute arbitrary web scripts or HTML and obtain sensitive information via a crafted payload injected into the boxId parameter in the image cropping function...
CVE-2024-30879
RageFrame2 v2.6.43 is affected by a reflected Cross-Site Scripting (XSS) vulnerability. A crafted payload injected into the boxId parameter of the image cropping function can allow remote attackers to execute arbitrary web scripts or HTML and potentially access sensitive information. Public detai...