CVE-2024-51831

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 19, 2024

CWE ID 79

Summary

CVE-2024-51831 is a Cross-site Scripting (XSS) vulnerability affecting the Persian Nested Show/Hide Text software version 1.5 and below. The issue arises from improper neutralization of user inputs during web page generation. An attacker can exploit this vulnerability by injecting malicious scripts into the application, resulting in stored XSS. This could potentially lead to unauthorized access to user data or sessions, and other malicious activities. Users are advised to update their software to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0MFgeN
https://www.cve.org/CVERecord?id=CVE-2024-51831
https://nvd.nist.gov/vuln/detail/CVE-2024-51831

Back to Vulnerability Database

CVE-2024-51831

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations