Lucene search
GoogleOSV:CVE-2021-27902HistoryJun 30, 2021 - 12:15 p.m.
CVE-2021-27902
2021-06-3012:15:07
Google
osv.dev
5
An issue was discovered in Craft CMS before 3.6.0. In some circumstances, a potential XSS vulnerability existed in connection with front-end forms that accepted user uploads.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cms | eq | 1.0.0-alpha.2236 | |
| cms | eq | 1.4.0-alpha.2493 | |
| cms | eq | 3.0.0-beta.5 | |
| cms | eq | 3.3.19 | |
| cms | eq | 2.6.2778 | |
| cms | eq | 0.9.2136 | |
| cms | eq | 3.5.13.2 | |
| cms | eq | 3.4.0-RC2 | |
| cms | eq | 3.0.0-beta.7 | |
| cms | eq | 3.2.0-RC2 |
Related
osv
osv
Craft CMS Cross-site Scripting Vulnerability
2021-07-02 18:36:31
cve
cve
CVE-2021-27902
2021-06-30 12:15:07
nvd
nvd
CVE-2021-27902
2021-06-30 12:15:07
prion
prion
Cross site scripting
2021-06-30 12:15:00
github
github
Craft CMS Cross-site Scripting Vulnerability
2021-07-02 18:36:31
cvelist
cvelist
CVE-2021-27902
2021-06-30 11:56:40