CVE-2018-20418
Published
CVSS v3
N/A
CVSS v2
3.5
LOW
Affected
2
PROJECTS
Description
index.php?p=admin/actions/entries/save-entry in Craft CMS 3.0.25 allows XSS by saving a new title from the console tab.
Craft CMS 3.0.25 - Cross-Site Scripting Vulnerability
GitHub