CVE-2023-38904

A Cross Site Scripting (XSS) vulnerability in Netlify CMS v.2.10.192 allows a remote attacker to execute arbitrary code via a crafted payload to the body parameter of the new post function. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt