CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Craftcms: >> Craft Cms >> 3.8.11 Security Vulnerabilities

CVE-2023-23927

Craft is a platform for creating digital experiences. When you insert a payload inside a label name or instruction of an entry type, an cross-site scripting (XSS) happens in the quick post widget on the admin dashboard. This issue has been fixed in version 4.3.7.

CVSS Score

6.1

EPSS Score

0.095

Published

2023-03-03

Page 2

Vulnerabilities

Vulnerable Software

Craftcms: >> Craft Cms >> 3.8.11 Security Vulnerabilities

Products

Pricing

Contact Us