CVE-2023-45771

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Mar 26, 2024

CWE ID 79

Summary

CVE-2023-45771 is a Cross-Site Scripting (XSS) vulnerability affecting Contact Form With Captcha. The flaw, which allows Reflected XSS attacks, stems from improper neutralization of user inputs during web page generation. This issue can potentially harm users of Contact Form With Captcha versions 1.6.8 and below. Attackers may exploit this vulnerability to inject and execute malicious scripts on victims' browsers, posing a serious security risk. It is recommended that users update their Contact Form With Captcha installation to the latest version as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s-4yTV
https://www.cve.org/CVERecord?id=CVE-2023-45771
https://nvd.nist.gov/vuln/detail/CVE-2023-45771

Back to Vulnerability Database

CVE-2023-45771

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations