Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NSquidex.io Squidex
APPSquidex.Io< 7.4.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2026-24736CRITICAL9.1PL ✓ten sam produkt
SSRF w Squidex — pełny odczyt odpowiedzi HTTP przez konfigurację Webhooków
CVE-2023-46253CRITICAL9.1ten sam produkt
Squidex is an open source headless CMS and content management hub. Affected versions are subject to an arbitra...
CVE-2023-46857MEDIUM5.4ten sam produkt
Squidex before 7.9.0 allows XSS via an SVG document to the Upload Assets feature. This occurs because there is...
CVE-2023-46252MEDIUM6.8ten sam produkt
Squidex is an open source headless CMS and content management hub. Affected versions are missing origin verifi...
CVE-2023-46744MEDIUM5.4ten sam produkt
Squidex is an open source headless CMS and content management hub. In affected versions a stored Cross-Site Sc...