CVE-2024-51604

Name of the Vulnerable Software and Affected Versions Media Modal versions through 1.0.2

Description The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS) vulnerability, which allows for DOM-Based XSS attacks. This means that an attacker could potentially inject malicious scripts into the webpage, affecting the Document Object Model (DOM), which is a programming interface for HTML and XML documents.

Recommendations For Media Modal versions through 1.0.2, update to a version later than 1.0.2 to resolve the issue. As a temporary workaround, consider restricting the use of the Media Modal until a patch is available.