CVE-2024-33328

Vulnerability Description

A cross-site scripting (XSS) vulnerability in the component main.jsp of Lumisxp v15.0.x to v16.1.x allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the pageId parameter.

Vulnerability Details

Published Date

June 26, 2024

Last Modified

March 25, 2025

Source

NVD

CVE-2024-33328

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment