CVE-2024-25582 — Module savepoints could be abused to inject references to malicious code delivered through the same domain. Attackers could perform malicious API requests or extract information from the users account — CVE Database · The Intelligence Room