CVE-2021-25894
CVE-2021-25894 targets Magnolia CMS versions 6.1.3 through 6.2.3 and describes a stored cross-site scripting (XSS) vulnerability in the /magnoliaPublic/travel/members/login.html mgnlUserId parameter. The connected records consistently identify this as a stored XSS issue in Magnolia’s login flow, ...