Vulnerabilities > Orchardcore > Orchardcore > 1.3.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-10-03 | CVE-2022-32173 | Cross-site Scripting vulnerability in Orchardcore In OrchardCore rc1-11259 to v1.2.2 vulnerable to HTML injection, allow an authenticated user with an editor security role to inject a persistent HTML modal dialog component into the dashboard that will affect admin users. | 5.4 |