CVE-2024-30442

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 29, 2024

Updated: Apr 1, 2024

CWE ID 79

Summary

CVE-2024-30442 is a Cross-site Scripting (XSS) vulnerability affecting Bold Page Builder from versions n/a through 4.8.0. Malicious scripts can be stored and executed on affected websites due to improper neutralization of user input during web page generation. This issue poses a significant risk as it allows attackers to inject malicious code and steal user data or take control of their browsing sessions. Users are advised to update to the latest version of Bold Page Builder to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vFqQDA
https://www.cve.org/CVERecord?id=CVE-2024-30442
https://nvd.nist.gov/vuln/detail/CVE-2024-30442

Back to Vulnerability Database

CVE-2024-30442

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations