Reflected Cross-Site Scripting Vulnerability in weDevs WP ERP Product
CVE-2024-47640
6.1MEDIUM
What is CVE-2024-47640?
The weDevs WP ERP product is susceptible to a reflected cross-site scripting (XSS) vulnerability, which arises from inadequate neutralization of input during web page generation. This security flaw permits attackers to inject malicious scripts into web pages, leading to potential unauthorized access or data theft. It affects versions ranging from n/a through 1.13.2, highlighting the importance of updating to secure versions to mitigate risks associated with this vulnerability.