Skip to content

Instantly share code, notes, and snippets.

cve-2024-29504
[CVE-ID]
CVE-2024-29504
[Product]
Summernote
[Affected Version]
<=0.8.18
[Vulnerability Type]
Cross Site Scripting (XSS)
[Description]
Cross Site Scripting vulnerability in Summernote v.0.8.18 and beforeallows a remote attacker to execute arbtirary code via a crafted payload to the codeview parameter.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment