Количество 2
Количество 2
CVE-2023-31144
больше 2 лет назад
Craft CMS is a content management system. Starting in version 3.0.0 and prior to versions 3.8.4 and 4.4.4, a malformed title in the feed widget can deliver a cross-site scripting payload. This issue is fixed in version 3.8.4 and 4.4.4.
CVSS3: 6.1
EPSS: Низкий
GHSA-j4mx-98hw-6rv6
почти 3 года назад
craftcms/cms vulnerable to cross site scripting in RSS feed widget
CVSS3: 6.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-31144 Craft CMS is a content management system. Starting in version 3.0.0 and prior to versions 3.8.4 and 4.4.4, a malformed title in the feed widget can deliver a cross-site scripting payload. This issue is fixed in version 3.8.4 and 4.4.4. | CVSS3: 6.1 | 1% Низкий | больше 2 лет назад |
| GHSA-j4mx-98hw-6rv6 craftcms/cms vulnerable to cross site scripting in RSS feed widget | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
Уязвимостей на страницу
20