CVE-2024-51920
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Summary
CVE-2024-51920 is a Cross-site Scripting (XSS) vulnerability affecting Map Store Locator from version n/a to 1.2.1. An attacker can exploit this issue by injecting malicious scripts through improper neutralization of user inputs during web page generation. The vulnerability allows an attacker to execute arbitrary code in the victim's browser, potentially leading to session hijacking, data theft, or other malicious actions. This threat poses a significant risk to organizations that use the affected version of Map Store Locator, making it essential to patch or mitigate the issue promptly.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.