1Mar
CVE-2024-27290 | jhpyle docassemble up to 1.4.96 user name cross site scripting (GHSA-pcfx-g2j2-f6f6)
A vulnerability was found in jhpyle docassemble up to 1.4.96. It has been rated as problematic. This issue affects some unknown processing. The manipulation of the argument user name leads to cross site scripting. The identification of this vulnerability is CVE-2024-27290. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.