CVE-2024-30178

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Mar 27, 2024
CWE ID 79

Summary

CVE-2024-30178 is a vulnerability classified as CWE-79 (Improper Neutralization of Input During Web Page Generation) that allows for Stored Cross-Site Scripting (XSS) in Patrick Posner Simply Static. Specifically, the vulnerability affects Simply Static versions from n/a through 3.1.3. It has a risk score of 25 and a base severity rating of MEDIUM. The exploit requires high privileges and user interaction, with an attack vector through the network. The impact on integrity and confidentiality is low, as well as availability. The vulnerability has been reported by audit@patchstack.com with a CVSS vector string of CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L. No analysis description or remediation steps are provided in the available information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-30178 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options