4 matches found
CVE-2023-37611
Cross Site Scripting XSS vulnerability in Neos CMS 8.3.3 allows a remote authenticated attacker to execute arbitrary code via a crafted SVG file to the neos/management/media component...
CVE-2023-37611
creationtimestamp| type| source ---|---|--- 2023-09-19 02:28:47+00:00| seen| https://t.me/cibsecurity/70688...
CVE-2023-37611
Cross Site Scripting XSS vulnerability in Neos CMS 8.3.3 allows a remote authenticated attacker to execute arbitrary code via a crafted SVG file to the neos/management/media component...
CVE-2023-37611
CVE-2023-37611 : Neos CMS 8.3.3 is affected by a Cross-Site Scripting vulnerability that allows a remote authenticated attacker to execute arbitrary code via a crafted SVG file uploaded to the neos/management/media component. Root cause is linked to handling of uploaded SVGs; impact is arbitrary ...