CVE-2024-40347

A reflected cross-site scripting (XSS) vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter htmlid. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt