CVE Catalog

CVE-2023-4174

LowCVSS 3.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Very high risk
5.27%

92th percentile — higher than 92% of all known CVEs

Summary

A vulnerability has been found in mooSocial mooStore version 3.1.6, leading to cross site scripting attacks. An attacker can remotely manipulate an unknown functionality of the application.

Risk Assessment

This vulnerability may lead to user data theft and session hijacking, posing a serious threat to the organization's security.

Recommendation

It is recommended to update mooSocial mooStore to the latest version to mitigate this vulnerability and conduct a security audit of the application.

Original NVD description (English source)

A vulnerability has been found in mooSocial mooStore 3.1.6 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. The identifier VDB-236209 was assigned to this vulnerability.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS