Vulnerabilities > Textpattern > Textpattern > 4.9.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-19 | CVE-2021-28002 | Cross-site Scripting vulnerability in Textpattern 4.9.0 A persistent cross-site scripting vulnerability was discovered in the Excerpt parameter in Textpattern CMS 4.9.0 which allows remote attackers to execute arbitrary code via a crafted payload entered into the URL field. | 3.5 |