CVE-2024-12020 — There is a reflected cross-site scripting (XSS) within JSP files used to control application appearance. An unauthenticated attacker could deceive a user into clicking a crafted link to trigger the vu — CVE Database · The Intelligence Room