CVE-2024-53718
CVSS 3.1 Score 7.1 of 10 (high)
Details
Summary
CVE-2024-53718 is a newly disclosed Cross-Site Request Forgery (CSRF) vulnerability that affects the Multi Feed Reader application, from an undisclosed version up to 2.2.4. An attacker could exploit this issue to perform a Stored Cross-Site Scripting (XSS) attack against an unsuspecting user. By manipulating data within the application, the attacker could inject malicious scripts that would execute in the user's browser, potentially leading to unauthorized access or data theft. Users are advised to update their Multi Feed Reader applications to the latest available version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- WordPress