Security Advisory

CVE-2022-33098

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-07 18:58:53
Last updated 2026-07-09 00:19:42
Assigner mitre
State PUBLISHED

Description

Magnolia CMS v6.2.19 was discovered to contain a cross-site scripting (XSS) vulnerability via the Edit Contact function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted SVG document, with JavaScript, for a profile picture.