Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:46 p.m.4 views

CVE-2022-24899

Contao is a powerful open source CMS that allows you to create professional websites and scalable web applications. In versions of Contao prior to 4.13.3 it is possible to inject code into the canonical tag. As a workaround users may disable canonical tags in the root page settings...

7.2CVSS6.7AI score0.03795EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/05 11:45 p.m.29 views

CVE-2022-24899 Cross site scripting via canonical tag

Contao is a powerful open source CMS that allows you to create professional websites and scalable web applications. In versions of Contao prior to 4.13.3 it is possible to inject code into the canonical tag. As a workaround users may disable canonical tags in the root page settings...

7.2CVSS7.2AI score0.03795EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/05/05 11:45 p.m.5 views

CVE-2022-24899 Cross site scripting via canonical tag

Contao is a powerful open source CMS that allows you to create professional websites and scalable web applications. In versions of Contao prior to 4.13.3 it is possible to inject code into the canonical tag. As a workaround users may disable canonical tags in the root page settings...

7.2CVSS7AI score0.03795EPSS
Exploits0References3
CVE
CVE
added 2022/05/05 11:45 p.m.135 views

CVE-2022-24899

Summary of CVE-2022-24899 : Contao prior to version 4.13.3 contains a cross-site scripting vulnerability that allows injection of arbitrary JavaScript into the canonical tag. Exploitation leads to JavaScript execution in a victim’s browser on the front end, with potential for data theft or web pa...

7.2CVSS6.3AI score0.03795EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder