CVE-2024-54308

Name of the Vulnerable Software and Affected Versions: Cryptocurrency Price Widget versions n/a through 1.2.3

Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS in the Cryptocurrency Price Widget.

Recommendations: For versions n/a through 1.2.3, consider disabling the widget until a patch is available to prevent potential exploitation. Restrict access to the widget to minimize the risk of Stored XSS attacks. Avoid using the widget in sensitive environments until the issue is resolved.