We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Prior to the patched version, logged in users of Mautic are vulnerable to a self XSS vulnerability in the notifications within Mautic. Users could inject malicious code into the notification when saving Dashboards.
Reserved 2022-02-22 | Published 2024-09-18 | Updated 2024-09-18 | Assigner MauticCWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
Vautia
Lenon Leite
Zdeno Kuzmany
John Linhart
github.com/...mautic/security/advisories/GHSA-fhcx-f7jg-jx3f
Support options