Description
Crafter CMS Crafter Studio 3.0.1 is affected by: Cross Site Scripting (XSS), which allows remote attackers to steal users’ cookies.
Remediation
References
https://docs.craftercms.org/en/3.0/security/advisory.html
Related Vulnerabilities
CVE-2016-10549 Vulnerability in npm package sails
CVE-2020-16024 Vulnerability in maven package org.webjars.npm:electron
CVE-2020-6454 Vulnerability in npm package electron
CVE-2014-3623 Vulnerability in maven package org.apache.wss4j:wss4j-ws-security-dom
CVE-2023-41327 Vulnerability in maven package org.wiremock:wiremock-webhooks-extension