Lucene search

K

Comments Security Vulnerabilities

cve

An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity.

6.5CVSS

6.5AI Score

0.001EPSS

2020-06-05 07:15 PM

100

cve

An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name.

5.4CVSS

5.1AI Score

0.001EPSS

2020-06-05 07:15 PM

99

cve

An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name.

5.4CVSS

5.1AI Score

0.001EPSS

2020-06-05 07:15 PM

100