Description
Crafter CMS Crafter Studio 3.0.1 is affected by: Cross Site Scripting (XSS), which allows remote attackers to steal users’ cookies.
Remediation
References
https://docs.craftercms.org/en/3.0/security/advisory.html
Related Vulnerabilities
CVE-2021-39232 Vulnerability in maven package org.apache.ozone:ozone-main
CVE-2021-31406 Vulnerability in maven package com.vaadin:flow-server
CVE-2023-28672 Vulnerability in maven package org.jenkinsci.plugins:octoperf
CVE-2014-1972 Vulnerability in maven package org.apache.tapestry:tapestry-core
CVE-2018-15531 Vulnerability in maven package net.bull.javamelody:javamelody-core