CVE-2024-39828

R74n Sandboxels 1.9 through 1.9.5 allows XSS via a message in a modified saved-game file. This was fixed in a hotfix to 1.9.5 on 2024-06-29...

CVE-2024-39828

CVE-2024-39828 affects R74n Sandboxels versions 1.9 through 1.9.5, enabling cross-site scripting via a message in a manipulated saved-game file. Red Hat and NVD entries concur; the issue was fixed in a hotfix to version 1.9.5 released on 2024-06-29. The Red Hat/CVE notes and related enrichments r...