CVE-2024-6938 | SiYuan 3.1.0 PDF PDF.js cross site scripting (11650/11949)

Posted by Angelo Barbosa | Jul 20, 2024 | CVE

A vulnerability has been found in SiYuan 3.1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PDF.js of the component PDF Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-6938. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-6938 | SiYuan 3.1.0 PDF PDF.js cross site scripting (11650/11949)

Related Posts

CVE-2024-5149 | BuddyForms Plugin up to 2.8.9 on WordPress Email Verification random values

CVE-2024-46047 | Tenda FH451 1.0.0.9 fromDhcpListClient stack-based overflow

CVE-2023-6927 | Red Hat Keycloak JARM Response redirect

CVE-2024-35682 | Themeisle Otter Blocks PRO Plugin up to 2.6.11 on WordPress information disclosure