PT-2022-13985 · Contao · Contao

Published

2022-05-05

Updated

2022-06-03

CVE-2022-1588

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions contao/contao versions prior to 4.13.3

Description The issue is related to Cross-site Scripting (XSS) in the contao/contao GitHub repository. An attacker can execute malicious JavaScript in the application.

Recommendations For versions prior to 4.13.3, update to version 4.13.3 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific issue.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-1588

Affected Products

Contao

PT-2022-13985 · Contao · Contao

CVE-2022-1588

Related Identifiers

Affected Products

References · 7