Description
Craft is a CMS for creating custom digital experiences. Cross site scripting (XSS) can be triggered by review volumes. This issue has been fixed in version 4.4.7.
Remediation
References
Related Vulnerabilities
Jetty Uncontrolled Resource Consumption Vulnerability (CVE-2020-27223)
WordPress Plugin PowerPress Podcasting by Blubrry Malicious Code (11.9.4)
Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2022-23794)