CVE-2024-51828

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 19, 2024

CWE ID 79

Summary

CVE-2024-51828 is a Cross-Site Scripting (XSS) vulnerability affecting Daniel J Griffiths Beacon for Help Scout from version n/a through 1.3.0. Maliciously crafted inputs during web page generation can lead to the execution of malicious scripts in a user's browser, potentially allowing attackers to steal sensitive information or take control of the user's session. This issue poses a significant risk to users of Beacon for Help Scout and requires immediate attention and patching to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0MGeIf
https://www.cve.org/CVERecord?id=CVE-2024-51828
https://nvd.nist.gov/vuln/detail/CVE-2024-51828

Back to Vulnerability Database

CVE-2024-51828

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations