CVE-2024-30519

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 29, 2024
CWE ID 79

Summary

CVE-2024-30519 is a Cross-site Scripting (XSS) vulnerability affecting Lordicon Animated Icons from version n/a to 2.0.1. Malicious scripts can be stored and executed on affected websites, posing a significant security risk. An attacker can inject malicious code into the webpage through the Lordicon Animated Icons component, leading to unintended execution of malicious scripts in users' browsers. This issue can result in information disclosure, session hijacking, or other forms of unauthorized access. Users are advised to update to the latest version or consider alternative solutions to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share