CVE-2024-1437

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Feb 29, 2024

CWE ID 79

Summary

CVE-2024-1437 is a Cross-Site Scripting (XSS) vulnerability affecting the Adsmonetizer software from an unknown version up to 3.1.2. The flaw, named "Improper Neutralization of Input During Web Page Generation," enables an attacker to inject malicious scripts into a web page viewed by other users. Such scripts could steal user data, perform unauthorized actions, or redirect users to malicious sites. Users are advised to upgrade to a secure version of Adsmonetizer as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ufW2j9
https://www.cve.org/CVERecord?id=CVE-2024-1437
https://nvd.nist.gov/vuln/detail/CVE-2024-1437

Back to Vulnerability Database

CVE-2024-1437

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations