VYPR

Maven package

org.craftercms/crafter-engine

pkg:maven/org.craftercms/crafter-engine

Vulnerabilities (1)

  • CVE-2023-4136Aug 3, 2023
    affected >= 4.0.0, < 4.0.3fixed 4.0.3

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CrafterCMS Engine on Windows, MacOS, Linux, x86, ARM, 64 bit allows Reflected XSS.This issue affects CrafterCMS: from 4.0.0 through 4.0.2, from 3.1.0 through 3.1.27.