CVE-2024-29504

Published April 10th, 2024

View on NVD ↗

CVSS v3

7.6

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Cross Site Scripting vulnerability in Summernote v.0.8.18 and before allows a remote attacker to execute arbtirary code via a crafted payload to the codeview parameter.

summernote/summernote

Super Simple WYSIWYG Editor

GitHub

11.8K