CVE-2024-52342

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 18, 2024
Updated: Nov 19, 2024
CWE ID 79

Summary

CVE-2024-52342 represents a Cross-site Scripting (XSS) vulnerability in OS BXSlider, developed by Offshorent Solutions Pvt Ltd. and maintained by Jinesh.P.V. This issue permits stored XSS attacks, which can be exploited by injecting malicious scripts into web pages generated by the OS BXSlider component. The vulnerability exists in versions from n/a up to 2.6, which puts a significant number of users at risk. Attackers can leverage this issue to steal user data, manipulate web pages, or carry out other malicious activities. Users are advised to upgrade to a secure version of OS BXSlider as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share