CVE-2024-0266
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Summary
CVE-2024-0266 is a newly identified vulnerability affecting the User Registration component of Project Worlds Online Lawyer Management System version 1.0. This issue involves an unspecified function where the input for the argument "First Name" can be exploited to execute cross-site scripting (XSS) attacks. The vulnerability can be triggered remotely, meaning an attacker does not need to have prior access to the system. The exploit for this weakness has been made public, increasing the risk of potential attacks. VDB-249822 is the assigned identifier for this security concern.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.