CVE-2023-51374

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Dec 29, 2023
Updated: Jan 5, 2024
CWE ID 79

Summary

CVE-2023-51374 is a Cross-site Scripting (XSS) vulnerability affecting ZeroBounce Email Verification & Validation. The flaw, located in the web page generation process, enables attackers to inject malicious scripts into the application. These scripts can be stored and executed on unsuspecting users' browsers, potentially stealing sensitive information or taking control of their sessions. The vulnerability impacts versions 1.0.11 and below of ZeroBounce Email Verification & Validation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share