CVE-2024-51836
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Nov 19, 2024
CWE ID 79
Summary
CVE-2024-51836 is a Cross-site Scripting (XSS) vulnerability affecting Teconce Wezido, specifically versions from n/a to 1.2. This issue arises due to improper neutralization of user inputs during web page generation. An attacker can exploit this vulnerability to inject malicious scripts into a web page viewed by other users, potentially stealing sensitive information or taking control of their browsing sessions. This could lead to unintended execution of malicious code, posing a significant security risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share