CVE-2023-32797

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Aug 25, 2023
Updated: Aug 28, 2023
CWE ID 79

Summary

CVE-2023-32797 is a newly identified Cross-Site Scripting (XSS) vulnerability affecting the I Thirteen Web Solution video carousel slider with lightbox plugin in versions 1.0.22 and below. An attacker can exploit this unauthenticated XSS flaw by injecting malicious scripts into a victim's web browser, potentially leading to the theft of sensitive information or unauthorized actions within the affected application. To mitigate this risk, it is strongly recommended that users upgrade to the latest, secure version of the plugin as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share