Skip to main content

Backdrop Core

1 CVEs product

Monthly

CVE-2019-14770 MEDIUM This Month

In Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3, some menu links within the administration bar may be crafted to execute JavaScript when the administrator is logged in and uses the. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Backdrop Core
NVD
CVSS 3.0
6.1
EPSS
0.8%
EPSS 1% CVSS 6.1
MEDIUM This Month

In Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3, some menu links within the administration bar may be crafted to execute JavaScript when the administrator is logged in and uses the. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Backdrop Core
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy