Vulnerability Database
296,746
Total vulnerabilities in the database
CVE-2023-31144
Craft CMS is a content management system. Starting in version 3.0.0 and prior to versions 3.8.4 and 4.4.4, a malformed title in the feed widget can deliver a cross-site scripting payload. This issue is fixed in version 3.8.4 and 4.4.4.
| Software | From | Fixed in |
|---|---|---|
craftcms / cms
|
3.0.0 | 3.8.4 |
|
craftcms / cms
|
4.0.0 | 4.4.4 |
| craftcms / craft_cms | 4.0.0 | 4.4.3.x |
| craftcms / craft_cms | 3.0.0 | 3.8.3.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime