Описание
XSS Injection Vulnerability
Impact
Under some circumstances, the Feeds widget on the dashboard could have an XSS vulnerability if a malformed feed was supplied.
Patches
This has been patched in Craft 3.7.29.
References
For more information
If you have any questions or comments about this advisory, email us at support@craftcms.com
Credits: https://github.com/noobpk
Пакеты
Наименование
craftcms/cms
composer
Затронутые версииВерсия исправления
< 3.7.29
3.7.29