CVE-2023-51693

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Feb 1, 2024

Updated: Feb 6, 2024

CWE ID 79

Summary

CVE-2023-51693 is a Cross-site Scripting (XSS) vulnerability affecting Themify Icons. Maliciously crafted input data can be stored and executed in web pages generated by the affected software, from version n/a through 2.0.1. An attacker can exploit this vulnerability to inject malicious scripts, potentially gaining unauthorized access to user data or session cookies, causing unintended actions on the affected website. Users are advised to update Themify Icons to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t4gGpc
https://www.cve.org/CVERecord?id=CVE-2023-51693
https://nvd.nist.gov/vuln/detail/CVE-2023-51693

Back to Vulnerability Database

CVE-2023-51693

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations