An issue was discovered in ViewerJS 0.5.8. A script from the component loads content via URL TAGs without properly sanitizing it. This leads to both open redirection and out-of-band resource loading.Referenceshttps://excellium-services.com/cert-xlm-advisory/cve-2024-25676