Cross-site Scripting Vulnerability in ByteLabX Pdf Embedder Fay Plugin
CVE-2024-51795
6.5MEDIUM
What is CVE-2024-51795?
A vulnerability exists in ByteLabX Pdf Embedder Fay that allows for DOM-Based Cross-site Scripting (XSS). This security issue arises from improper neutralization of user input during web page generation, enabling attackers to execute malicious scripts in the context of the user's browser session. Affected versions include all prior to 1.10.1. It is crucial for users of the Pdf Embedder Fay plugin to update to the latest version to mitigate potential risks.
Affected Version(s)
Pdf Embedder Fay 0 <= 1.10.1