CVE-2024-1636


Potential Cross-Site Scripting (XSS) in the page editing area

Potential Cross-Site Scripting (XSS) in the page editing area.


We have discovered 1,931 live websites that are affected by CVE-2024-1636.

Contact us to get more info



Affected Software

Product  Sitefinity
Category Content Management System
Vulnerable Versions
  • from 13.3.7600 before 13.3.7649
  • from 14.4.8100 before 14.4.8135
  • from 15.0.8200 before 15.0.8227
Total Vulnerable Versions342
Vulnerable Domains1,931 live websites (35.15% of Sitefinity install base)


Common Weakness Enumeration


CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')



Details

  • Published - Feb 28, 2024
  • Updated - Feb 28, 2024





Countries

United States1,216 websites


Canada129 websites
GB127 websites
Australia92 websites
Singapore70 websites
Netherlands47 websites
Germany32 websites
Mexico28 websites
France22 websites
Thailand16 websites

TLDs

.com927 websites
.org353 websites
.co.uk76 websites
.com.au70 websites
.ca64 websites
.edu45 websites
.nl37 websites
.de24 websites
.net23 websites
.fr15 websites

Vulnerable Versions

Vulnerable versions are highlighted in red


References


Websites affected by CVE-2024-1636

Top websites that are affected by CVE-2024-1636. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*********.net GB*,***
***.*********.net GB*,***
***.**************.com United States*,***
***.************.org United States**,***
***.*******.com United States**,***
***.*******.***.gov United States**,***
***.***.***.sg Singapore**,***
***.****.org United States**,***
***.***.sg Singapore**,***
***.****.org United States**,***
See full domain list