CVE-2023-51807

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 16, 2024

Updated: Jan 23, 2024

CWE ID 79

Summary

CVE-2023-51807 is a Cross-Site Scripting (XSS) vulnerability affecting OFCMS version 1.14. An attacker can exploit this issue by injecting malicious code in the title addition component, allowing them to obtain sensitive information from unsuspecting users. This vulnerability poses a significant risk, as it can lead to data theft or unauthorized access to protected resources. To mitigate this threat, it is recommended that users update their OFCMS installation to the latest version as soon as possible. Failure to do so may result in unintended information disclosure and potential security breaches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t7Tvc4
https://www.cve.org/CVERecord?id=CVE-2023-51807
https://nvd.nist.gov/vuln/detail/CVE-2023-51807

Back to Vulnerability Database

CVE-2023-51807

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations