CVE ID | Publié | Description | Score | Gravité |
---|---|---|---|---|
An authenticated user who has the privilege to add/edit annotations on the Content tab, can craft a malicious annotation that can be executed on the annotations page (Annotation Text Column). | 5.4 |
Moyen |
||
An authenticated user can embed malicious content with XSS into the admin group policy page. | 5.4 |
Moyen |