CVE-2024-44771

MEDIUM

BigId PrivacyPortal v179 - Cross-Site Scripting via Report Template Label Field

Title source: llm
STIX 2.1

Description

BigId PrivacyPortal v179 is vulnerable to Cross Site Scripting (XSS) via the "Label" field in the Report template function.

Scores

CVSS v3 6.1
EPSS 0.0024
EPSS Percentile 14.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Published Jan 13, 2025
Tracked Since Feb 18, 2026