3.1.31

DATE	CVE	VULNERABILITY TITLE	RISK
2019-07-26	CVE-2019-14280	Information Exposure vulnerability in Craftcms Craft CMS In some circumstances, Craft 2 before 2.7.10 and 3 before 3.2.6 wasn't stripping EXIF data from user-uploaded images when it was configured to do so, potentially exposing personal/geolocation data to the public. network low complexity craftcms CWE-200	5.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.