2 matches found
CVE-2017-8298
CVE-2017-8298 affects cnvs.io Canvas 3.3.0. The vulnerability is a Cross‑Site Scripting (XSS) issue present in the title and content fields when using the Posts > Add New action, and during creation of new tags and users. The provided connected documents confirm the same description across mul...
CVE-2017-1000507
Canvs Canvas 3.4.2 is affected by a Cross Site Scripting (XSS) vulnerability in User’s details. The provided connected documents identify the issue but do not specify root cause details, affected subcomponents beyond the User’s details, exploit status, or a confirmed patch version. Potential impa...