CVE-2024-50533

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Nov 19, 2024
CWE ID 352

Summary

CVE-2024-50533 is a newly identified vulnerability affecting the David Garcia Domain Sharding software. This issue involves a Cross-Site Request Forgery (CSRF) weakness, which can be exploited to execute Stored XSS (Cross-Site Scripting) attacks. The vulnerability lies within the Domain Sharding functionality, which is used from version n/a up to and including 1.2.1. Malicious actors can leverage this flaw to inject malicious scripts into unsuspecting users' web browsers, potentially stealing sensitive information or hijacking sessions.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Domain Sharding Plugin

Affected Vendors

  • WordPress