CVE-2024-53757

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 30, 2024
CWE ID 79

Summary

CVE-2024-53757 is a Cross-site Scripting (XSS) vulnerability affecting the WP Find Your Nearest plugin for SocialEvolution. The flaw, specifically an Improper Neutralization of Input During Web Page Generation, allows attackers to inject malicious scripts into the webpage, potentially stealing user data or taking control of their sessions. This issue can be exploited by attackers to launch targeted attacks on users of the WP Find Your Nearest plugin, with versions from n/a through 0.3.1 being impacted. It is essential for users to apply the necessary patches or updates to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share