CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Craftercms: >> Craftercms >> 3.1.0 Security Vulnerabilities

CVE-2023-4136

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CrafterCMS Engine on Windows, MacOS, Linux, x86, ARM, 64 bit allows Reflected XSS.This issue affects CrafterCMS: from 4.0.0 through 4.0.2, from 3.1.0 through 3.1.27.

CVSS Score

7.4

EPSS Score

0.162

Published

2023-08-03

Page 1

Vulnerabilities

Vulnerable Software

Craftercms: >> Craftercms >> 3.1.0 Security Vulnerabilities

Products

Pricing

Contact Us