Vulnerabilities > Backdropcms > Backdrop > 1.23.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-24 | CVE-2023-31045 | Cross-site Scripting vulnerability in Backdropcms Backdrop A stored Cross-site scripting (XSS) issue in Text Editors and Formats in Backdrop CMS before 1.24.2 allows remote attackers to inject arbitrary web script or HTML via the name parameter. | 4.8 |
| 2022-11-22 | CVE-2022-42094 | Cross-site Scripting vulnerability in Backdropcms Backdrop 1.23.0 Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the 'Card' content. | 4.8 |
| 2022-11-22 | CVE-2022-42097 | Cross-site Scripting vulnerability in Backdropcms Backdrop 1.23.0 Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via 'Comment.' . | 4.8 |