CVE-2020-25768

Published: 2020-10-07T21:15Z

Last Modified: 2024-11-21T05:18Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Contao before 4.4.52, 4.9.x before 4.9.6, and 4.10.x before 4.10.1 have Improper Input Validation. It is possible to inject insert tags in front end forms which will be replaced when the page is rendered. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt