5 matches found
CVE-2022-35174
A stored cross-site scripting XSS vulnerability in Kirby's Starterkit v3.7.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Tags field...
Cross site scripting
A stored cross-site scripting XSS vulnerability in Kirby's Starterkit v3.7.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Tags field...
CVE-2022-35174
A stored cross-site scripting XSS vulnerability in Kirby's Starterkit v3.7.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Tags field...
CVE-2022-35174
The CVE-2022-35174 entry covers a stored XSS in Kirby’s Starterkit v3.7.0.2, where an attacker can inject a crafted payload into the Tags field to execute arbitrary web scripts/HTML. The vulnerability affects Kirby Starterkit’s Tags handling, with a CVSS v3.1 base score of 5.4 (Medium) and all us...
CVE-2022-35174
A stored cross-site scripting XSS vulnerability in Kirby's Starterkit v3.7.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Tags field...