2 matches found
Craft CMS 跨站脚本漏洞
Pixel & tonic Craft CMS is a content management system CMS from Pixel & tonic, Inc. A security vulnerability exists in Craft CMS, which stems from a cross-site scripting vulnerability that can be triggered by the Update Asset Index utility...
PT-2023-24213 · Craft · Craft
Name of the Vulnerable Software and Affected Versions: Craft versions prior to 4.4.7 Description: Cross-site scripting XSS can be triggered by review volumes. The issue is related to the index.php?p=admin/actions/asset-indexes/process-indexing-session function, where the skippedEntries and...