Cross-site Scripting Vulnerability Affects Email Subscribers & Newsletters

CVE-2024-22300

What is CVE-2024-22300?

The vulnerability in Icegram Email Subscribers & Newsletters arises from the improper neutralization of user input during web page generation, resulting in a reflected Cross-site Scripting (XSS) issue. This vulnerability may allow attackers to inject malicious scripts into web pages, which could be executed in the context of a victim's browser, leading to potential data theft or session hijacking. The affected versions span from n/a through 5.7.11, highlighting the necessity for users to upgrade to secure versions to protect against this significant risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References