18Mar
CVE-2024-24683 | Apache Hop Engine up to 2.7.x PrepareExecutionPipelineServlet Page id cross site scripting
A vulnerability was found in Apache Hop Engine up to 2.7.x. It has been classified as problematic. This affects an unknown part of the component PrepareExecutionPipelineServlet Page. The manipulation of the argument id leads to basic cross site scripting. This vulnerability is uniquely identified as CVE-2024-24683. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.