How severe is CVE-2024-4755?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4 out of 10.

What type of vulnerability is CVE-2024-4755?

This is classified as CWE-79, which is a common weakness in software security.

CVE-2024-4755

MEDIUM Year: 2024

CVSS v3 Score

4.0

Medium

Weakness Type

CWE-79

View all →

Vulnerability Description

The Google CSE WordPress plugin through 1.0.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

CVE-2018-11352

MEDIUM

CVSS:4.0(Medium)

The Wallabag application 2.2.3 to 2.3.2 is affected by one cross-site scripting (XSS) vulnerability that is stored within the configuration page. This vulnerability enables the execution of a JavaScri...

CWE-792018

CVE-2019-4148

MEDIUM

CVSS:4.0(Medium)

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering t...

CWE-792019