XSS Vulnerability in Satisfaction Reports from Help Scout

CVE-2024-51778

What is CVE-2024-51778?

A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Satisfaction Reports feature of Help Scout. This vulnerability allows attackers to inject malicious scripts that could be executed in the context of the user’s browser. When exploited, it could lead to unauthorized data access or manipulation, posing a significant risk to user privacy and security. The issue impacts versions from n/a through 2.0.3 of the Satisfaction Reports plugin. Organizations utilizing these versions should take appropriate actions to mitigate the risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References