CVE-2024-33648

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Apr 29, 2024

CWE ID 79

Summary

CVE-2024-33648 is a Cross-site Scripting (XSS) vulnerability affecting wzy Media's Recencio Book Reviews. The flaw, which allows Stored XSS attacks, is due to improper input neutralization during web page generation. This issue extends from unspecified versions up to and including 1.66.0. Successful exploitation could lead to the injection of malicious scripts into web pages, potentially compromising user sessions or stealing sensitive information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vmh0P4
https://www.cve.org/CVERecord?id=CVE-2024-33648
https://nvd.nist.gov/vuln/detail/CVE-2024-33648

Back to Vulnerability Database

CVE-2024-33648

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations