CVE-2024-24889

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 12, 2024
CWE ID 79

Summary

CVE-2024-24889 is a vulnerability categorized as CWE-79, specifically an 'Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)' issue. It affects the Geek Code Lab All 404 Pages Redirect to Homepage version n/a through 1.9. The vulnerability allows for stored cross-site scripting attacks. The base severity is rated as MEDIUM with a base score of 6.1 out of 10. The exploitability score is 2.8, and no privileges are required to exploit it. User interaction is required, and the attack vector is through the network. The impact on integrity and confidentiality is low, while availability impact is none. Remediation measures have not been provided at this time, and the danger it poses to organizations could potentially include unauthorized access to sensitive information or manipulation of website content through malicious scripts injected by attackers.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-24889 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options