CVE-2023-47508

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Nov 16, 2023

Updated: Nov 22, 2023

CWE ID 79

Summary

CVE-2023-47508 is an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability affecting versions 3.6.5 and below of the Averta Master Slider Pro plugin. An attacker can inject malicious code into a webpage viewed by other users, potentially stealing sensitive information or gaining unauthorized access, making it essential for users to update their plugin to a secure version promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Averta Master Slider

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tSuTgA
https://www.cve.org/CVERecord?id=CVE-2023-47508
https://nvd.nist.gov/vuln/detail/CVE-2023-47508

Back to Vulnerability Database

CVE-2023-47508

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations