CVE-2024-22300

Summary

CVE-2024-22300 is a Cross-site Scripting (XSS) vulnerability affecting Icegram Email Subscribers & Newsletters. The flaw stems from improper neutralization of user input during web page generation, permitting Reflected XSS attacks. Successful exploitation could lead to the injection of malicious scripts into web pages viewed by other users, potentially stealing sensitive information or taking control of their sessions. This vulnerability impacts versions of Icegram Email Subscribers & Newsletters from n/a through 5.7.11.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.