CVE-2021-46253

2022-02-0113:15:09

Google

osv.dev

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.8%

JSON

A cross-site scripting (XSS) vulnerability in the Create Post function of Anchor CMS v0.12.7 allows attackers to execute arbitrary web scripts or HTML.

CPENameOperatorVersion
anchor-cmseq0.8.2
anchor-cmseq0.9.1
anchor-cmseq0.12.1
anchor-cmseq0.12
anchor-cmseq0.9.3-b
anchor-cmseq0.4
anchor-cmseq0.9
anchor-cmseq0.12.3
anchor-cmseq0.5
anchor-cmseq0.9.3-a

Name	Operator	Version
anchor-cms	eq	0.8.2
anchor-cms	eq	0.9.1
anchor-cms	eq	0.12.1
anchor-cms	eq	0.12
anchor-cms	eq	0.9.3-b
anchor-cms	eq	0.4
anchor-cms	eq	0.9
anchor-cms	eq	0.12.3
anchor-cms	eq	0.5
anchor-cms	eq	0.9.3-a