Description
Craft CMS 4.2.0.1 is vulnerable to Cross Site Scripting (XSS) via Drafts.
Remediation
References
Related Vulnerabilities
WordPress Plugin Controlled Admin Access Security Bypass (1.4.0)
WordPress Plugin Rating-Widget:Star Review System Cross-Site Scripting (2.8.8)
WordPress Plugin Backup and Restore WordPress-WPBackItUp Arbitrary File Deletion (1.15.3)
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4900)
WordPress Plugin Eventify-Simple Events 'npath' Parameter Remote File Include (1.7.g)