Описание
Craft CMS Cross-site Scripting vulnerability
Craft CMS 4.2.0.1 is affected by Cross Site Scripting (XSS) in the file src/web/assets/cp/src/js/BaseElementSelectInput.js and in specific on the line label: elementInfo.label.
Пакеты
Наименование
craftcms/cms
composer
Затронутые версииВерсия исправления
>= 4.0.0-RC1, < 4.2.1
4.2.1
Наименование
craftcms/cms
composer
Затронутые версииВерсия исправления
>= 3.7.39, < 3.7.51
3.7.51
Связанные уязвимости
CVSS3: 5.4
nvd
больше 3 лет назад
Craft CMS 4.2.0.1 is affected by Cross Site Scripting (XSS) in the file src/web/assets/cp/src/js/BaseElementSelectInput.js and in specific on the line label: elementInfo.label.