CVE-2024-53715
CVSS 3.1 Score 7.1 of 10 (high)
Details
Summary
CVE-2024-53715 is a newly disclosed vulnerability affecting the Thomas Hoefter Simple Travel Map, specifically versions from n/a to 0.1. This issue combines two serious threats, a Cross-Site Request Forgery (CSRF) and a Stored Cross-Site Scripting (XSS) vulnerability. An attacker exploiting the CSRF flaw can force a user to perform unintended actions on the affected website. Meanwhile, the Stored XSS vulnerability enables an attacker to inject malicious scripts into web pages that are later viewed by other users, potentially leading to data theft or website defacement.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- WordPress