A vulnerability classified as problematic was found in y_project RuoYi up to 4.7.9. Affected by this vulnerability is the function
isJsonRequest
of the component Content-Type Handler. The manipulation of the argument HttpHeaders.CONTENT_TYPE leads to cross site scripting.
This vulnerability is known as CVE-2024-6511. The attack can be launched remotely. Furthermore, there is an exploit available.