RSS   Podatności dla 'Comments'   RSS

2020-06-05
 
CVE-2020-13870

CWE-79
 

 
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name.

 
 
CVE-2020-13869

CWE-79
 

 
An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name.

 
 
CVE-2020-13868

CWE-352
 

 
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity.

 

 >>> Vendor: Verbb 3 Produkty
Comments
Knock knock
Image resizer


Copyright 2024, cxsecurity.com

 

Back to Top