Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Verbb Subscribe
Filtered by product Comments
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-13868 1 Verbb 1 Comments 2020-06-09 4.3 MEDIUM 6.5 MEDIUM
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity.
CVE-2020-13869 1 Verbb 1 Comments 2020-06-09 3.5 LOW 5.4 MEDIUM
An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name.
CVE-2020-13870 1 Verbb 1 Comments 2020-06-09 3.5 LOW 5.4 MEDIUM
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name.