CVE-2024-51920

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 19, 2024
CWE ID 79

Summary

CVE-2024-51920 is a Cross-site Scripting (XSS) vulnerability affecting Map Store Locator from version n/a to 1.2.1. An attacker can exploit this issue by injecting malicious scripts through improper neutralization of user inputs during web page generation. The vulnerability allows an attacker to execute arbitrary code in the victim's browser, potentially leading to session hijacking, data theft, or other malicious actions. This threat poses a significant risk to organizations that use the affected version of Map Store Locator, making it essential to patch or mitigate the issue promptly.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share