Описание
Craft CMS Cross-site Scripting Vulnerability
An issue was discovered in Craft CMS before 3.6.0. In some circumstances, a potential XSS vulnerability existed in connection with front-end forms that accepted user uploads.
Пакеты
Наименование
craftcms/cms
composer
Затронутые версииВерсия исправления
< 3.6.0
3.6.0
Связанные уязвимости
CVSS3: 6.1
nvd
больше 4 лет назад
An issue was discovered in Craft CMS before 3.6.0. In some circumstances, a potential XSS vulnerability existed in connection with front-end forms that accepted user uploads.