Vulnerabilities > Backdropcms > Backdrop CMS > 1.6.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-20 | CVE-2018-1000813 | Cross-site Scripting vulnerability in Backdropcms Backdrop CMS Backdrop CMS version 1.11.0 and earlier contains a Cross Site Scripting (XSS) vulnerability in Sanitization of custom class names used on blocks and layouts. | 3.5 |