We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Craft is a content management system (CMS). Craft CMS 5 stored XSS can be triggered by the breadcrumb list and title fields with user input.
Reserved 2024-08-28 | Published 2024-09-09 | Updated 2024-09-09 | Assigner GitHub_MCWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
github.com/...ms/cms/security/advisories/GHSA-28h4-788g-rh42
github.com/...ommit/b7348942f8131b3868ec6f46d615baae50151bb8
Support options