CVE-2024-53789

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Dec 2, 2024
CWE ID 352

Summary

CVE-2024-53789 is a newly discovered vulnerability that puts users of Ritesh Sanap Advanced application versions from n/a to 1.0.3 at risk. This issue combines the threat of Cross-Site Request Forgery (CSRF) attacks with Stored Cross-Site Scripting (XSS), creating a potent security hazard. An attacker, who successfully executes a CSRF attack, can force a user to perform unintended actions on the application, while a Stored XSS vulnerability allows an attacker to inject malicious scripts into web pages and steal sensitive data or take control of user sessions. Both attacks can lead to significant security breaches and privacy violations. It is highly recommended that users upgrade to the latest version of the application as soon as possible to mitigate these risks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share