Umbraco CMS is an ASP.NET CMS used by more than 730.000 websites. Stored Cross-site scripting (XSS) enable attackers that have access to backoffice to bring malicious content into a website or application. This vulnerability has been patched in version(s) 8.18.13, 10.8.4, 12.3.7, 13.1.1 by implementing IHtmlSanitizer.
Metrics
Affected Vendors & Products
References
History
Wed, 12 Feb 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Umbraco
Umbraco umbraco Cms |
|
CPEs | cpe:2.3:a:umbraco:umbraco_cms:*:*:*:*:*:*:*:* | |
Vendors & Products |
Umbraco
Umbraco umbraco Cms |

Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-05-21T13:42:27.260Z
Updated: 2024-08-02T03:07:46.766Z
Reserved: 2024-05-14T15:39:41.783Z
Link: CVE-2024-35218

Updated: 2024-05-22T17:11:45.616Z

Status : Analyzed
Published: 2024-05-21T14:15:12.003
Modified: 2025-02-12T17:46:28.833
Link: CVE-2024-35218

No data.