Description
Craft is a CMS for creating custom digital experiences on the web. A malformed RSS feed can deliver an XSS payload. This issue was patched in version 4.4.6.
Remediation
References
Related Vulnerabilities
Ruby Cryptographic Issues Vulnerability (CVE-2012-5371)
Oracle JRE CVE-2013-2454 Vulnerability (CVE-2013-2454)
MongoDb Improper Input Validation Vulnerability (CVE-2019-2389)
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29208)
WordPress Plugin Media Search Enhanced SQL Injection (0.6.0)