An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity.
6.5CVSS
6.5AI Score
0.001EPSS
An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name.
5.4CVSS
5.1AI Score
0.001EPSS
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name.
5.4CVSS
5.1AI Score
0.001EPSS