CVE-2020-24075

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Aug 11, 2023
Updated: Aug 16, 2023
CWE ID 79

Summary

CVE-2020-24075 is a Cross-Site Scripting (XSS) vulnerability affecting the Contact Us form's Name Input Field in Laborator Kalium before version 3.0.4. An attacker can exploit this flaw to inject and execute malicious scripts in a victim's browser, potentially stealing sensitive information or taking control of their account. This vulnerability poses a significant risk, as it can be triggered through specially crafted web pages or malicious emails, exposing users to potential attacks. To mitigate this risk, it is highly recommended that users upgrade to the latest version of Laborator Kalium to protect against this and other known vulnerabilities.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share