Vulnerability Database
289,496
Total vulnerabilities in the database
CVE-2022-37251
Craft CMS 4.2.0.1 is vulnerable to Cross Site Scripting (XSS) via Drafts.
| Software | From | Fixed in |
|---|---|---|
| craftcms / craft_cms | 4.2.0.1 | 4.2.0.1.x |
craftcms / cms
|
3.7.0-beta.1 | 3.7.55.2 |
|
craftcms / cms
|
4.0.0-RC1 | 4.2.1 |
- http://craft.com
- https://github.com/craftcms/cms/blob/develop/CHANGELOG.md#421---2022-08-09
- https://github.com/craftcms/cms/commit/7139213dbd9e177a3528aac8e2db8de91830f118
- https://github.com/craftcms/cms/commit/919c9074ff8596bf30a629b0888c529793e9a903
- https://github.com/craftcms/cms/commit/f0d9b8a1e3ac005a2418f7d3d9059b49a96e73ea
- https://labs.integrity.pt/advisories/cve-2022-37251/