CVE-2024-47330

Summary

CVE-2024-47330 identifies a Missing Authorization vulnerability affecting the Supsystic Slider plugin (versions n/a to 1.8.6) and the Supsystic Social Share Buttons plugin (versions n/a to 2.2.9). This vulnerability has been rated with a medium severity level, scoring 4.3 on the CVSS scale, and it requires low privileges with no user interaction for exploitation via the network. The potential danger includes unauthorized access that could allow attackers to manipulate data integrity, although there is no impact on confidentiality or availability. Organizations using these plugins are advised to apply available security patches promptly to remediate the issue and mitigate risks associated with this vulnerability. More information can be found in detailed reports provided by Patchstack at their respective links for each affected product.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.