CVE-2021-32470Cross-site Scripting in CMS

CWE-79Cross-site Scripting2 documents2 sources
Severity
MEDIUM
No vector
EPSS
0.3%
top 44.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Craftcms CMS
Timeline
PublishedMar 18

Description

Craft CMS Cross-site Scripting Vulnerability Craft CMS before 3.6.13 has an XSS vulnerability.

Affected Packages1 packages

Packagistcraftcms/cms< 3.6.13

🔴Vulnerability Details

2
GHSA
Craft CMS Cross-site Scripting Vulnerability2022-03-18
OSV
Craft CMS Cross-site Scripting Vulnerability2022-03-18
CVE-2021-32470 — Cross-site Scripting in Craftcms CMS | cvebase