Stored XSS Vulnerability in Digital Zoom Studio Parallaxer
CVE-2024-51848

Currently unrated

Key Information:

Vendor: Digital Zoom Studio
Status: Parallaxer
Vendor: CVE Published:; 19 November 2024

Summary

A vulnerability has been identified in the Digital Zoom Studio Parallaxer plugin, which allows for improper neutralization of input during web page generation, leading to Stored Cross-site Scripting (XSS) attacks. This security flaw affects versions from n/a through 1.00, enabling attackers to inject malicious scripts that may be executed in the context of a user's session, potentially compromising sensitive information and the integrity of web applications.

References

https://patchstack.com/database/vulnerability/parallaxer-...

Timeline

Vulnerability published
Nov 19, 2024