CVE-2024-47627

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 5, 2024

CWE ID 79

Summary

CVE-2024-47627 is a Cross-site Scripting (XSS) vulnerability found in WP Travel Gutenberg Blocks versions up to 3.6.0, allowing for stored XSS attacks. Affected products include various implementations of WP Travel Gutenberg Blocks, which may expose organizations to risks if exploited, including unauthorized data access or manipulation. The vulnerability has a medium severity rating with a CVSS base score of 6.5, requiring low privileges and user interaction for exploitation via network vectors. To remediate the issue, organizations should update their WP Travel Gutenberg Blocks to the latest version where this vulnerability has been addressed. Failure to do so may result in potential integrity and confidentiality impacts, despite the overall risk being considered low due to the required user interaction for exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Know What Matters

For Customers

For Partners

CVE-2024-47627

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations