Moderate severityNVD Advisory· Published Nov 27, 2020· Updated Aug 5, 2024
CVE-2017-15686
CVE-2017-15686
Description
Crafter CMS Crafter Studio 3.0.1 is affected by: Cross Site Scripting (XSS), which allows remote attackers to steal users’ cookies.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.craftercms:crafter-studioMaven | < 3.0.2 | 3.0.2 |
Affected products
2- Crafter CMS/Crafter Studiodescription
Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-ph76-rhqq-xj7jghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-15686ghsaADVISORY
- docs.craftercms.org/en/3.0/security/advisory.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.