CVE-2024-10515
CVSS 3.1 Score 3.5 of 10 (low)
Details
Published Nov 20, 2024
Updated: Nov 21, 2024
Summary
CVE-2024-10515 is a newly discovered vulnerability in the Squirrly SEO WordPress plugin before version 12.3.21. This issue permits an attacker to inject malicious scripts through Stored XSS, targeting the plugin editor. Successful exploitation can lead to account takeover, providing unauthorized access to user accounts. This vulnerability poses a significant risk to websites using the affected plugin and necessitates immediate remediation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Squirrly