CVE-2023-47809
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Nov 22, 2023
Updated: Nov 28, 2023
CWE ID 79
Summary
CVE-2023-47809 is a Cross-site Scripting (XSS) vulnerability affecting Themepoints Accordion plugin versions 2.6 and below. Hackers can exploit this issue by injecting malicious scripts into webpages generated by the plugin, potentially stealing user information or taking control of user sessions. This can lead to serious security risks, including data breaches and unauthorized access to sensitive information. Users are urged to upgrade to the latest version of the plugin or consider alternative solutions to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share