CVE-2020-24075
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Summary
CVE-2020-24075 is a Cross-Site Scripting (XSS) vulnerability affecting the Contact Us form's Name Input Field in Laborator Kalium before version 3.0.4. An attacker can exploit this flaw to inject and execute malicious scripts in a victim's browser, potentially stealing sensitive information or taking control of their account. This vulnerability poses a significant risk, as it can be triggered through specially crafted web pages or malicious emails, exposing users to potential attacks. To mitigate this risk, it is highly recommended that users upgrade to the latest version of Laborator Kalium to protect against this and other known vulnerabilities.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.