CVE-2024-51692

Name of the Vulnerable Software and Affected Versions Askew Brook Bing Search API Integration versions 0.3.3 and earlier

Description The issue is related to improper neutralization of input during web page generation, leading to a Cross-site Scripting (XSS) vulnerability, specifically Reflected XSS. This flaw is caused by improper handling of input, allowing an attacker to inject malicious scripts into web pages.

Recommendations For versions 0.3.3 and earlier, update to a version later than 0.3.3 to resolve the issue. As a temporary workaround, consider restricting access to the API endpoint to minimize the risk of exploitation. Avoid using user-inputted data in the API integration until the issue is resolved.