Magnolia-cms » Magnolia Cms : Security Vulnerabilities, CVEs, (XSS)
Magnolia CMS v6.2.19 was discovered to contain a cross-site scripting (XSS) vulnerability via the Edit Contact function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
Max CVSS
6.1
EPSS Score
0.07%
Published
2022-07-07
Updated
2022-07-15
Magnolia CMS from 6.1.3 to 6.2.3 contains a stored cross-site scripting (XSS) vulnerability in the /magnoliaPublic/travel/members/login.html mgnlUserId parameter.
Max CVSS
6.1
EPSS Score
0.13%
Published
2021-04-02
Updated
2021-04-15
Magnolia CMS from 6.1.3 to 6.2.3 contains a stored cross-site scripting (XSS) vulnerability in the setText parameter of /magnoliaAuthor/.magnolia/.
Max CVSS
5.4
EPSS Score
0.07%
Published
2021-04-02
Updated
2021-04-15
3 vulnerabilities found