CVE-2023-51493
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Feb 10, 2024
Updated: Feb 15, 2024
CWE ID 79
Summary
CVE-2023-51493 is a Cross-site Scripting (XSS) vulnerability affecting Howard Ehrenberg Custom Post Carousels with Owl. The flaw arises from improper neutralization of user input during web page generation. An attacker can exploit this vulnerability to inject and execute malicious scripts in a victim's browser, potentially stealing sensitive information or taking control of the user's session. Affected versions of Custom Post Carousels with Owl range from n/a to 1.4.6. It is crucial for users to apply the necessary patches or updates to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share