CVE-2023-47380

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Nov 22, 2023
Updated: Dec 1, 2023
CWE ID 79

Summary

CVE-2023-47380 is a newly identified vulnerability affecting Admidio version 4.2.12 and below. This issue allows an attacker to inject malicious scripts into a web page viewed by other users. As a result, unsuspecting users may unintentionally execute the attacker's code, leading to potential theft of sensitive information or unauthorized actions. The Cross Site Scripting (XSS) flaw can be exploited by an attacker through specially crafted input, making it crucial for users to update their Admidio installations to the latest patched version as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share