CVE-2024-10515

CVSS 3.1 Score 3.5 of 10 (low)

Details

Published Nov 20, 2024
Updated: Nov 21, 2024

Summary

CVE-2024-10515 is a newly discovered vulnerability in the Squirrly SEO WordPress plugin before version 12.3.21. This issue permits an attacker to inject malicious scripts through Stored XSS, targeting the plugin editor. Successful exploitation can lead to account takeover, providing unauthorized access to user accounts. This vulnerability poses a significant risk to websites using the affected plugin and necessitates immediate remediation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share