CVSS 3.1 Score 7.1 of 10 (high)


Published Nov 16, 2023
Updated: Nov 23, 2023


CVE-2023-39926 is a vulnerability categorized as Unauth. Stored Cross-Site Scripting (XSS) in the Acurax Under Construction / Maintenance Mode plugin versions up to 2.6. This vulnerability has a risk score of 25 and a base severity rating of HIGH, with an exploitability score of 2.8. The affected products are t0IlIj and t0IlIi. The potential danger to organizations is relatively low, with an integrity impact and confidentiality impact both rated as LOW, and no privileges required for exploitation. To remediate this vulnerability, it is recommended to update the Acurax plugin to a version higher than 2.6, which addresses the XSS vulnerability and improves security against unauthorized access or manipulation of web pages.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-39926 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options