CVE-2020-13869

CVE-2020-13869

EPSS 0.5%

An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/verbb/comments/blob/craft-3/CHANGELOG.md#155---2020-05-28-critical