Stored Cross-Site Scripting Vulnerability in Umbraco CMS
CVE-2024-55488
6.5MEDIUM
What is CVE-2024-55488?
A stored cross-site scripting (XSS) vulnerability exists in Umbraco CMS version 14.3.1, enabling attackers to inject and execute malicious web scripts or HTML through specially crafted payloads. This vulnerability poses significant risks including data theft and session hijacking, making it imperative for users to apply security updates and adhere to best practices in web security.