Description
Crafter CMS Crafter Studio 3.0.1 is affected by: Cross Site Scripting (XSS), which allows remote attackers to steal users’ cookies.
Remediation
References
https://docs.craftercms.org/en/3.0/security/advisory.html
Related Vulnerabilities
CVE-2022-36914 Vulnerability in maven package org.jenkins-ci.plugins:files-found-trigger
CVE-2023-42794 Vulnerability in maven package org.apache.tomcat:tomcat
CVE-2020-7011 Vulnerability in npm package @elastic/app-search-node
CVE-2023-42795 Vulnerability in maven package org.apache.tomcat:tomcat
CVE-2018-12585 Vulnerability in maven package org.opcfoundation.ua:opc-ua-stack