Cross Site Scripting Vulnerability in CraftCMS by Pixel & Tonic
CVE-2023-30177
6.1MEDIUM
What is CVE-2023-30177?
CraftCMS version 3.7.59 is susceptible to a Cross Site Scripting (XSS) vulnerability. This issue allows attackers to inject malicious JavaScript code into the Volume Name field, potentially compromising the security of the application by manipulating user interactions and data. Users of CraftCMS should be aware of this vulnerability and apply necessary patches and updates to safeguard their systems from such attacks.