CVE-2024-31857

Name of the Vulnerable Software and Affected Versions Forminator versions prior to 1.15.4

Description The issue is related to a cross-site scripting vulnerability. If exploited, a remote attacker may obtain user information and alter the page contents on the user's web browser. The vulnerability is associated with the lack of protection measures for the web page structure, which could allow an attacker to gain unauthorized access to protected information and conduct cross-site scripting attacks.

Recommendations For versions prior to 1.15.4, update to version 1.15.4 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive user information and monitoring web page contents for any unauthorized alterations.