CVE-2024-47303

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 25, 2024
Updated: Sep 26, 2024
CWE ID 79

Summary

CVE-2024-47303 is a Cross-Site Scripting (XSS) vulnerability affecting Livemesh Addons for Elementor, specifically versions up to 8.5. This vulnerability allows for Stored XSS attacks, which could potentially compromise user data and site integrity. The issue requires low privileges and user interaction to exploit, with an overall medium severity rating of 6.5 based on the CVSS 3.1 scoring system. Organizations using the affected plugin should apply available patches to mitigate this risk effectively. Failure to remediate could lead to unauthorized access or manipulation of site content by attackers.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share