CVE-2024-29773

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Mar 27, 2024

CWE ID 352

Summary

CVE-2024-29773 is a Cross-Site Request Forgery (CSRF) vulnerability identified in BizSwoop's BizPrint, a product of CPF Concepts, LLC. This issue allows an attacker to execute unwanted actions on a user's behalf, potentially leading to unauthorized data modifications. Additionally, the product contains a Cross-Site Scripting (XSS) vulnerability, enabling attackers to inject malicious scripts into web pages viewed by other users. Both vulnerabilities impact BizPrint versions from n/a through 4.5.5.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vDhng-
https://www.cve.org/CVERecord?id=CVE-2024-29773
https://nvd.nist.gov/vuln/detail/CVE-2024-29773

Back to Vulnerability Database

CVE-2024-29773

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations