CVE-2024-51849

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 19, 2024

CWE ID 79

Summary

CVE-2024-51849 is a Cross-site Scripting (XSS) vulnerability affecting the Marco Piarulli My Restaurant Menu software. The flaw, which permits Stored XSS, occurs during the web page generation process, allowing an attacker to inject malicious scripts into a targeted website. This can lead to unauthorized access to user data or even takeover of user accounts. The vulnerability exists in all versions of the software from n/a through 0.2.0. Users are advised to update to a secure version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0MGRdH
https://www.cve.org/CVERecord?id=CVE-2024-51849
https://nvd.nist.gov/vuln/detail/CVE-2024-51849

Back to Vulnerability Database

CVE-2024-51849

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations