Security Advisory
CVE-2024-54123
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Backdrop CMS before 1.28.4 and 1.29.x before 1.29.2 allows XSS via an SVG document, if the SVG tag is allowed for a text format.