CVE-2024-25506
EUVD-2024-2283428.03.2024, 20:15
Cross Site Scripting vulnerability in Process Maker, Inc ProcessMaker before 4.0 allows a remote attacker to run arbitrary code via control of the pm_sys_sys cookie.
Awaiting analysis
This vulnerability is currently awaiting analysis.