Vulnerabilities > Batflat > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-11 | CVE-2021-27679 | Cross-site Scripting vulnerability in Batflat 1.3.6 Cross-site scripting (XSS) vulnerability in Navigation in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name. | 5.4 |
| 2021-03-11 | CVE-2021-27678 | Cross-site Scripting vulnerability in Batflat 1.3.6 Cross-site scripting (XSS) vulnerability in Snippets in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name. | 5.4 |
| 2021-03-11 | CVE-2021-27677 | Cross-site Scripting vulnerability in Batflat 1.3.6 Cross-site scripting (XSS) vulnerability in Galleries in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name. | 5.4 |