2 matches found
CVE-2023-31045
Backdrop CMS
CVE-2024-54123
The CVE-2024-54123 entry affects Backdrop CMS before 1.28.4 and 1.29.x before 1.29.2. The vulnerability is a cross-site scripting (XSS) flaw triggered when an SVG document is used and the SVG tag is allowed for a text format, enabling an attacker to inject script via SVG markup. Impact details in...