Description
Crafter CMS Crafter Studio 3.0.1 is affected by: Cross Site Scripting (XSS), which allows remote attackers to steal users’ cookies.
Remediation
References
https://docs.craftercms.org/en/3.0/security/advisory.html
Related Vulnerabilities
CVE-2019-10400 Vulnerability in maven package org.jenkins-ci.plugins:script-security
CVE-2015-5241 Vulnerability in maven package org.apache.juddi:juddi-client
CVE-2022-41935 Vulnerability in maven package org.xwiki.platform:xwiki-platform-livetable-ui
CVE-2016-10027 Vulnerability in maven package org.igniterealtime.smack:smack-tcp
CVE-2022-23708 Vulnerability in maven package org.elasticsearch:elasticsearch