CVE

CVE-2024-30845

Date: (C)2024-04-12   (M)2024-04-16

Cross Site Scripting vulnerability in Rainbow external link network disk v.5.5 allows a remote attacker to execute arbitrary code via the validation component of the input parameters.

Reference:

https://gist.github.com/Zshan7que/c813f2b52daab08c9fb4f6c6b8178b66

https://github.com/netcccyun/pan/issues/6