CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4136

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CrafterCMS Engine on Windows, MacOS, Linux, x86, ARM, 64 bit allows Reflected XSS.This issue affects CrafterCMS: from 4.0.0 through 4.0.2, from 3.1.0 through 3.1.27.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.162

EPSS Ranking 94.5%

CVSS Severity

CVSS v3 Score 7.4

References

Products affected by CVE-2023-4136

Craftercms » Craftercms » Version: 3.1.0

cpe:2.3:a:craftercms:craftercms:3.1.0
Craftercms » Craftercms » Version: 3.1.1

cpe:2.3:a:craftercms:craftercms:3.1.1
Craftercms » Craftercms » Version: 3.1.10

cpe:2.3:a:craftercms:craftercms:3.1.10
Craftercms » Craftercms » Version: 3.1.11

cpe:2.3:a:craftercms:craftercms:3.1.11
Craftercms » Craftercms » Version: 3.1.12

cpe:2.3:a:craftercms:craftercms:3.1.12
Craftercms » Craftercms » Version: 3.1.13

cpe:2.3:a:craftercms:craftercms:3.1.13
Craftercms » Craftercms » Version: 3.1.14

cpe:2.3:a:craftercms:craftercms:3.1.14
Craftercms » Craftercms » Version: 3.1.15

cpe:2.3:a:craftercms:craftercms:3.1.15
Craftercms » Craftercms » Version: 3.1.16

cpe:2.3:a:craftercms:craftercms:3.1.16
Craftercms » Craftercms » Version: 3.1.17

cpe:2.3:a:craftercms:craftercms:3.1.17
Craftercms » Craftercms » Version: 3.1.17.3

cpe:2.3:a:craftercms:craftercms:3.1.17.3
Craftercms » Craftercms » Version: 3.1.17.4

cpe:2.3:a:craftercms:craftercms:3.1.17.4
Craftercms » Craftercms » Version: 3.1.17.5

cpe:2.3:a:craftercms:craftercms:3.1.17.5
Craftercms » Craftercms » Version: 3.1.17.6

cpe:2.3:a:craftercms:craftercms:3.1.17.6
Craftercms » Craftercms » Version: 3.1.17.7

cpe:2.3:a:craftercms:craftercms:3.1.17.7
Craftercms » Craftercms » Version: 3.1.18

cpe:2.3:a:craftercms:craftercms:3.1.18
Craftercms » Craftercms » Version: 3.1.19

cpe:2.3:a:craftercms:craftercms:3.1.19
Craftercms » Craftercms » Version: 3.1.2

cpe:2.3:a:craftercms:craftercms:3.1.2
Craftercms » Craftercms » Version: 3.1.20

cpe:2.3:a:craftercms:craftercms:3.1.20
Craftercms » Craftercms » Version: 3.1.21

cpe:2.3:a:craftercms:craftercms:3.1.21
Craftercms » Craftercms » Version: 3.1.22

cpe:2.3:a:craftercms:craftercms:3.1.22
Craftercms » Craftercms » Version: 3.1.23

cpe:2.3:a:craftercms:craftercms:3.1.23
Craftercms » Craftercms » Version: 3.1.24

cpe:2.3:a:craftercms:craftercms:3.1.24
Craftercms » Craftercms » Version: 3.1.25

cpe:2.3:a:craftercms:craftercms:3.1.25
Craftercms » Craftercms » Version: 3.1.26

cpe:2.3:a:craftercms:craftercms:3.1.26
Craftercms » Craftercms » Version: 3.1.27

cpe:2.3:a:craftercms:craftercms:3.1.27
Craftercms » Craftercms » Version: 3.1.3

cpe:2.3:a:craftercms:craftercms:3.1.3
Craftercms » Craftercms » Version: 3.1.4

cpe:2.3:a:craftercms:craftercms:3.1.4
Craftercms » Craftercms » Version: 3.1.5

cpe:2.3:a:craftercms:craftercms:3.1.5
Craftercms » Craftercms » Version: 3.1.6

cpe:2.3:a:craftercms:craftercms:3.1.6
Craftercms » Craftercms » Version: 3.1.7

cpe:2.3:a:craftercms:craftercms:3.1.7
Craftercms » Craftercms » Version: 3.1.8

cpe:2.3:a:craftercms:craftercms:3.1.8
Craftercms » Craftercms » Version: 3.1.9

cpe:2.3:a:craftercms:craftercms:3.1.9
Craftercms » Craftercms » Version: 4.0.0

cpe:2.3:a:craftercms:craftercms:4.0.0
Craftercms » Craftercms » Version: 4.0.1

cpe:2.3:a:craftercms:craftercms:4.0.1
Craftercms » Craftercms » Version: 4.0.2

cpe:2.3:a:craftercms:craftercms:4.0.2
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4136

Products

Pricing

Contact Us