Caddy-security CVEs and Security Vulnerabilities

Filtered by vendor Authcrunch Subscriptions

Filtered by product Caddy-security Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-52430	1 Authcrunch	1 Caddy-security	2024-11-21	6.1 Medium
The caddy-security plugin 1.1.20 for Caddy allows reflected XSS via a GET request to a URL that contains an XSS payload and begins with either a /admin or /settings/mfa/delete/ substring.

Page 1 of 1.