Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2020-13870 | 1 Verbb | 1 Comments | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name.
|
|||||
| CVE-2020-13869 | 1 Verbb | 1 Comments | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name.
|
|||||
| CVE-2020-13868 | 1 Verbb | 1 Comments | 2024-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
|
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity.
|
|||||