CVSS 3.1 Score 6.1 of 10 (medium)


Published Feb 1, 2024
Updated: Feb 2, 2024


CVE-2024-23032 is a Cross Site Scripting vulnerability found in eyoucms v.1.6.5. This vulnerability allows a remote attacker to execute arbitrary code by exploiting the num parameter through a crafted URL. The risk score for this vulnerability is 26, with a base severity of MEDIUM and a base score of 6.1 according to the NVD. The exploitability score is 2.8, indicating a medium level of difficulty for attackers to exploit this vulnerability. The impact of this vulnerability is low in terms of integrity and confidentiality, and it requires user interaction to be triggered. It poses a potential danger to organizations using eyoucms v.1.6.5 as it could lead to the execution of unauthorized code on their systems if not remediated promptly.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-23032 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options