Moderate severityNVD Advisory· Published Jun 20, 2023· Updated Dec 9, 2024
CVE-2023-33495
CVE-2023-33495
Description
Craft CMS through 4.4.9 is vulnerable to HTML Injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
craftcms/cmsPackagist | <= 4.4.9 | — |
Affected products
2- Craft/Craft CMSdescription
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-m3v5-gjj9-rg24ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-33495ghsaADVISORY
- medium.com/@mondalsomnath9135/html-injection-in-craft-cms-application-e2b28f746212ghsaWEB
- owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/11-Client-side_Testing/03-Testing_for_HTML_InjectionghsaWEB
- medium.com/%40mondalsomnath9135/html-injection-in-craft-cms-application-e2b28f746212mitre
News mentions
0No linked articles in our index yet.