CVE-2024-51832

Summary

CVE-2024-51806 is a Cross-site Scripting (XSS) vulnerability affecting the Awesome Fitness Testimonials plugin, version n/a through 1.0.1, used on Shingo Suzumura's Fitness Website Formula. The flaw arises due to improper neutralization of user input during web page generation. An attacker can exploit this vulnerability by injecting malicious scripts into the testimonials, potentially leading to stolen user data or unauthorized site actions for affected visitors.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.