12Ağu
CVE-2024-42489 | xwikisas xwiki-pro-macros up to 1.10.0 Viewpdf Macro CKEditor.HTMLConverter injection
A vulnerability classified as critical has been found in xwikisas xwiki-pro-macros up to 1.10.0. This affects an unknown part of the file CKEditor.HTMLConverter of the component Viewpdf Macro. The manipulation leads to injection. This vulnerability is uniquely identified as CVE-2024-42489. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.