Vulnerability Database
296,747
Total vulnerabilities in the database
XSS Injection Vulnerability
Impact
Under some circumstances, the Feeds widget on the dashboard could have an XSS vulnerability if a malformed feed was supplied.
Patches
This has been patched in Craft 3.7.29.
References
- https://github.com/craftcms/cms/blob/develop/CHANGELOG.md#3729---2022-01-18
For more information
If you have any questions or comments about this advisory, email us at support@craftcms.com
Credits: https://github.com/noobpk
| Software | From | Fixed in |
|---|---|---|
craftcms / cms
|
- | 3.7.29 |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime