CVE-2024-51884

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 19, 2024

CWE ID 79

Summary

CVE-2024-51884 is a Cross-site Scripting (XSS) vulnerability affecting Takashi Matsuyama Posts Search. The flaw, located in the input neutralization process during web page generation, enables an attacker to inject malicious scripts into web pages viewed by other users. This stored XSS issue can potentially compromise user sessions and steal sensitive data or carry out further attacks. The vulnerability impacts Posts Search versions from n/a through 1.2.2. Users are advised to update to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0MFZJP
https://www.cve.org/CVERecord?id=CVE-2024-51884
https://nvd.nist.gov/vuln/detail/CVE-2024-51884

Back to Vulnerability Database

CVE-2024-51884

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations