Description
Craft is a content management system (CMS). Craft CMS 5 stored XSS can be triggered by the breadcrumb list and title fields with user input.
Remediation
References
Related Vulnerabilities
Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8112)
WordPress Plugin Real-Time Find and Replace Cross-Site Scripting (3.8)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7846)
WordPress Plugin Stylish Price List Security Bypass (6.8.14)
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7873)