CVE-2024-51599

Name of the Vulnerable Software and Affected Versions Russell Albin Simple Business Manager versions n/a through 4.6.7.4

Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This problem allows for Stored XSS, where an attacker can inject malicious scripts into a website, which are then stored and executed by the website. The estimated number of potentially affected devices worldwide is not available. There is no information provided about real-world incidents where this issue was exploited.

Recommendations For versions n/a through 4.6.7.4, update to a version that contains a fix for this issue, as the current version is affected by the Stored XSS vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.