GHSA-344q-xw48-jxqfMediumCVSS 5.4

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...

Published
June 24, 2024
Last Modified
June 3, 2026

🔗 CVE IDs covered (1)

CVE-2024-4754

📋 Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Next4Biz CRM & BPM Software Business Process Manangement (BPM) allows Stored XSS.This issue affects Business Process Manangement (BPM): from 6.6.4.4 before 6.6.4.5.

🔗 References (4)