Medium severity5.4NVD Advisory· Published Apr 27, 2017· Updated May 13, 2026
CVE-2017-8298
CVE-2017-8298
Description
cnvs.io Canvas 3.3.0 has XSS in the title and content fields of a "Posts > Add New" action, and during creation of new tags and users.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/cnvs/canvas/issues/331nvdIssue TrackingPatchWEB
- github.com/advisories/GHSA-3657-q433-mmpxghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-8298ghsaADVISORY
News mentions
0No linked articles in our index yet.