CVE-2024-31349

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Apr 7, 2024

Updated: Apr 8, 2024

CWE ID 79

Summary

CVE-2024-31349 is a Cross-site Scripting (XSS) vulnerability affecting MailMunch's MailMunch – Grow your Email List from versions n/a to 3.1.6. The flaw stems from improper neutralization of user input during web page generation. An attacker can exploit this vulnerability to inject malicious scripts into a targeted user's browser, potentially gaining unauthorized access to sensitive information or taking control of their account.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vQNTLo
https://www.cve.org/CVERecord?id=CVE-2024-31349
https://nvd.nist.gov/vuln/detail/CVE-2024-31349

Back to Vulnerability Database

CVE-2024-31349

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations