CVE-2024-56287

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 7, 2025
CWE ID 79

Summary

CVE-2024-56287 is a Cross-site Scripting (XSS) vulnerability affecting WP jQuery DataTable. The flaw, which allows Stored XSS attacks, occurs due to improper neutralization of user input during web page generation. This issue affects all versions of WP jQuery DataTable from n/a through 4.0.1. Attackers can inject malicious scripts into a victim's web browser when they view a specially crafted page, potentially leading to data theft or unauthorized actions. Users are advised to update their WP jQuery DataTable installations to a patched version as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share