CVE-2024-51801

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 19, 2024

CWE ID 79

Summary

CVE-2024-51801 is a Cross-site Scripting (XSS) vulnerability affecting the Jake Brown Brand my Footer plugin. The issue permits malicious DOM-Based XSS attacks due to improper neutralization of user inputs during web page generation. This security flaw can be exploited by attackers to inject and execute malicious scripts in users' browsers. The vulnerability affects Brand my Footer versions from n/a through 1.1. Users are advised to update their plugins as soon as a patch is available to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0MFZJB
https://www.cve.org/CVERecord?id=CVE-2024-51801
https://nvd.nist.gov/vuln/detail/CVE-2024-51801

Back to Vulnerability Database

CVE-2024-51801

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations