CVE-2022-37250
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in packagist/craftcms/cms
Identifiers
CVE-2022-37250
Package Slug
packagist/craftcms/cms
Vulnerability
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Description
Craft CMS 4.2.0.1 suffers from Stored Cross Site Scripting (XSS) in /admin/myaccount.
Affected Versions
Version 4.2.0.1
Solution
Upgrade to version 4.2.0.2 or above.
Last Modified
2022-09-19
| source |