Vulnerabilities > Magnolia CMS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-07 | CVE-2022-33098 | Cross-site Scripting vulnerability in Magnolia-Cms Magnolia CMS 6.2.19 Magnolia CMS v6.2.19 was discovered to contain a cross-site scripting (XSS) vulnerability via the Edit Contact function. | 6.1 |
| 2021-04-02 | CVE-2021-25894 | Cross-site Scripting vulnerability in Magnolia-Cms Magnolia CMS Magnolia CMS from 6.1.3 to 6.2.3 contains a stored cross-site scripting (XSS) vulnerability in the /magnoliaPublic/travel/members/login.html mgnlUserId parameter. | 6.1 |
| 2021-04-02 | CVE-2021-25893 | Cross-site Scripting vulnerability in Magnolia-Cms Magnolia CMS Magnolia CMS from 6.1.3 to 6.2.3 contains a stored cross-site scripting (XSS) vulnerability in the setText parameter of /magnoliaAuthor/.magnolia/. | 5.4 |