← Back to CVE List

CVE-2023-31144

Published: 2023-05-09T16:15Z
Last Modified: 2024-11-21T08:01Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Craft CMS is a content management system. Starting in version 3.0.0 and prior to versions 3.8.4 and 4.4.4, a malformed title in the feed widget can deliver a cross-site scripting payload. This issue is fixed in version 3.8.4 and 4.4.4. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt