Unknown · Aam Advanced Access Manager · CVE-2024-29124
**Name of the Vulnerable Software and Affected Versions**
AAM Advanced Access Manager versions through 6.9.20
**Description**
The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables potential attackers to inject malicious scripts into web pages.
**Recommendations**
For versions through 6.9.20, update to a version later than 6.9.20 to resolve the issue.
As a temporary workaround, consider restricting access to sensitive areas of the web application to minimize the risk of exploitation.