4.0.9

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-02	CVE-2022-30429	Cross-site Scripting vulnerability in Neos CMS Multiple cross-site scripting (XSS) vulnerabilities in Neos CMS allow attackers with the editor role or higher to inject arbitrary script or HTML code using the editor function, the deletion of assets, or a workspace title. network low complexity neos CWE-79	5.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.