2 matches found
CVE-2017-9516
Craft CMS before 2.6.2982 allows for a potential XSS attack vector by uploading a malicious SVG file...
CVE-2017-9516
CVE-2017-9516 describes a cross-site scripting (XSS) vulnerability in Craft CMS prior to version 2.6.2982. The issue arises when a malicious SVG file is uploaded, enabling an attacker to inject or execute arbitrary scripts in the context of the affected site. The available connected documents cor...