CVE

CVE-2024-30884

Date: (C)2024-04-12   (M)2024-04-12

Reflected Cross-Site Scripting (XSS) vulnerability in Discuz! version X3.4 20220811, allows remote attackers to execute arbitrary code and obtain sensitive information via crafted payload to the primarybegin parameter in the misc.php component.

Reference:

https://github.com/Hebing123/cve/issues/28