mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
742 B
742 B
CVE-2024-25676
Description
An issue was discovered in ViewerJS 0.5.8. A script from the component loads content via URL TAGs without properly sanitizing it. This leads to both open redirection and out-of-band resource loading.
POC
Reference
- https://cds.thalesgroup.com/en/tcs-cert/CVE-2024-25676
- https://excellium-services.com/cert-xlm-advisory/cve-2024-25676
Github
No PoCs found on GitHub currently.