Description
Crafter CMS Crafter Studio 3.0.1 is affected by: Cross Site Scripting (XSS), which allows remote attackers to steal users’ cookies.
Remediation
References
https://docs.craftercms.org/en/3.0/security/advisory.html
Related Vulnerabilities
CVE-2014-0095 Vulnerability in maven package org.apache.tomcat:tomcat-coyote
CVE-2018-1000191 Vulnerability in maven package com.blackducksoftware.integration:blackduck-detect
CVE-2023-27094 Vulnerability in maven package cn.hippo4j:hippo4j-all
CVE-2015-0264 Vulnerability in maven package org.apache.camel:camel-core
CVE-2022-33140 Vulnerability in maven package org.apache.nifi.registry:nifi-registry-core