CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-33209

FlatPress v1.3 is vulnerable to Cross Site Scripting (XSS). An attacker can inject malicious JavaScript code into the "Add New Entry" section, which allows them to execute arbitrary code in the context of a victim's web browser.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.6%

CVSS Severity

CVSS v3 Score 5.4

References

https://github.com/paragbagul111/CVE-2024-33209

Products affected by CVE-2024-33209

Flatpress » Flatpress » Version: 1.3

cpe:2.3:a:flatpress:flatpress:1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-33209

Products

Pricing

Contact Us