← volver
CVE-2020-25768

CVE-2020-25768

EPSS 0.8%
Contao before 4.4.52, 4.9.x before 4.9.6, and 4.10.x before 4.10.1 have Improper Input Validation. It is possible to inject insert tags in front end forms which will be replaced when the page is rendered.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://community.contao.org/en/forumdisplay.php?4-Announcementshttps://contao.org/en/security-advisories/insert-tag-injection-in-forms.html