Unrated severityNVD Advisory· Published Feb 27, 2024· Updated Oct 31, 2024
CVE-2024-26472
CVE-2024-26472
Description
KLiK SocialMediaWebsite version 1.0.1 from msaad1999 has a reflected cross-site scripting (XSS) vulnerability which may allow remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'selector' or 'validator' parameters of 'create-new-pwd.php'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =1.0.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.