CVE-2024-51688
CVSS 3.1 Score 7.1 of 10 (high)
Details
Published Nov 14, 2024
Updated: Nov 15, 2024
CWE ID 352
Summary
CVE-2024-51688 is a newly disclosed vulnerability affecting FraudLabs Pro SMS Verification. Specifically, it is a Cross-Site Request Forgery (CSRF) issue that also includes Stored XSS (Cross-Site Scripting) capabilities. This weakness lies in the FraudLabs Pro SMS Verification software, impacting versions from n/a to 1.10.1. An attacker could exploit this vulnerability to execute malicious scripts in a user's browser or force them to perform unintended actions, posing a significant security threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share