CVE-2023-44813

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Oct 9, 2023

Updated: Oct 11, 2023

CWE ID 79

Summary

CVE-2023-44813 is a Cross-Site Scripting (XSS) vulnerability affecting mooSocial version 3.1.8. An attacker can exploit this issue by crafting a malicious payload to the mode parameter of the invite friend login function. Successful exploitation allows the attacker to execute arbitrary code in the context of the affected website, potentially leading to user data theft or unauthorized actions. This poses a significant risk to websites using the affected mooSocial version and highlights the importance of prompt patching and secure input validation practices.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s4EMKk
https://www.cve.org/CVERecord?id=CVE-2023-44813
https://nvd.nist.gov/vuln/detail/CVE-2023-44813

Back to Vulnerability Database

CVE-2023-44813

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations