Apostrophe CMS is a fully functional open source CMS built using Node.js, designed to enhance organization by combining contextual editing and headless architecture in a full-stack JS environment.Apostrophe CMS = cross-site scripting vulnerability, which originates in Apostrophe CMS versions between 2.63.0 and 3.3.1 is vulnerable to a stored XSS attack. An attacker could exploit this vulnerability to upload SVG files containing malicious JavaScript to the Images module, which, once viewed, would trigger XSS.
CPE | Name | Operator | Version |
---|---|---|---|
Apostrophe CMS Apostrophe CMS >=2.63.0, | le | 3.3.1 |