CVE-2024-11660
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Summary
CVE-2024-11660 is a newly disclosed vulnerability affecting the Farmacia 1.0 software. This issue, located in the usuario.php file, has been classified as problematic. Attackers can exploit this cross-site scripting (XSS) vulnerability by manipulating an argument name, enabling them to inject malicious code. The attack can be initiated remotely, increasing the risk to users. The exploit has been made public, increasing the urgency for affected parties to apply patches or workarounds. Other parameters within the software may also be vulnerable to similar attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.