CVE-2023-41868

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Sep 25, 2023
Updated: Sep 26, 2023
CWE ID 79

Summary

CVE-2023-41868 is an unauthorized Reflected Cross-Site Scripting (XSS) vulnerability affecting versions 2.3.7 of the Codestag StagTools plugin used in Ram Ratan Maurya. An attacker can exploit this issue by injecting malicious scripts into web pages viewed by other users, potentially stealing sensitive information or taking control of their sessions. This flaw poses a significant security risk, making it crucial for users to update their plugin as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share