CVE-2024-51880
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Summary
CVE-2024-51880 is a Cross-site Scripting (XSS) vulnerability affecting BeBetter Social Icons, version n/a through 2.7. This issue arises due to improper neutralization of user input during web page generation. An attacker can exploit this flaw to inject malicious scripts into a targeted user's browser, potentially stealing sensitive information or taking control of their account. The DOM-Based XSS vulnerability poses a significant security risk, as it bypasses the Same-Origin Policy and can be triggered even on secure websites. It is essential that users and organizations update their BeBetter Social Icons to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.