CVE-2023-48329

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Nov 30, 2023

Updated: Dec 5, 2023

CWE ID 79

Summary

CVE-2023-48329 is an Input Validation vulnerability affecting the CodeBard Fast Custom Social Share plugin. The issue permits Cross-Site Scripting (XSS) attacks through improper neutralization of user input during web page generation. This vulnerability enables an attacker to inject malicious scripts into a targeted website, potentially leading to data theft or unauthorized account access. The affected version range is from n/a to 1.1.1. Users are advised to upgrade to the latest, secure version to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/taFlmk
https://www.cve.org/CVERecord?id=CVE-2023-48329
https://nvd.nist.gov/vuln/detail/CVE-2023-48329

Back to Vulnerability Database

CVE-2023-48329

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations