Craftcms: >> Craft Cms >> 1.3.2456 Security Vulnerabilities
Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.
CVSS Score
5.3
EPSS Score
0.003
Published
2017-05-01
Craft CMS before 2.6.2974 allows XSS attacks.
CVSS Score
6.1
EPSS Score
0.004
Published
2017-04-22
Page 3