Craft CMS Stored XSS Vulnerability
CVE-2024-45406
4.8MEDIUM
What is CVE-2024-45406?
Craft is a content management system (CMS). Craft CMS 5 stored XSS can be triggered by the breadcrumb list and title fields with user input.
Affected Version(s)
cms >= 5.0.0, < 5.1.2