2022-11-23 00:00:00
mitre
PUBLISHED
Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 3) via remote attackers adding a Javascript payload to a pages meta description and get it executed in the versioned history compare view.