CVE-2024-47622

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 5, 2024
CWE ID 79

Summary

CVE-2024-47622 is a Cross-site Scripting (XSS) vulnerability found in the Advanced Woo Labels plugin, affecting versions up to 2.01. This flaw allows for stored XSS attacks, which could be exploited by attackers to execute malicious scripts in the context of users visiting affected web pages. The vulnerability has a medium severity rating with a CVSS score of 6.5 and requires low privileges and user interaction for exploitation. Organizations can mitigate this risk by updating the plugin to the latest version provided by the vendor. If left unremediated, this vulnerability poses risks such as unauthorized data access and potential compromise of user accounts.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share