Medium severity6.1NVD Advisory· Published Apr 22, 2017· Updated Jun 17, 2026
CVE-2017-8052
CVE-2017-8052
Description
Craft CMS before 2.6.2974 allows XSS attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
craftcms/cmsPackagist | < 2.6.2974 | 2.6.2974 |
Affected products
2Patches
Vulnerability mechanics
References
6- craftcms.com/changelognvdRelease NotesVendor Advisory
- github.com/advisories/GHSA-xv5f-2997-qhrqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-8052ghsaADVISORY
- twitter.com/CraftCMS/status/855535309878112256nvdThird Party AdvisoryWEB
- github.com/craftcms/cms/blob/2.6.2974/CHANGELOG.mdghsaWEB
- github.com/craftcms/cms/commit/f7e57018ff487d1ebbe375f6cb1852f4d79767ffghsaWEB
News mentions
0No linked articles in our index yet.