Security Advisories - PKSA-wgr5-shk8-4nmh - Packagist

PKSA-wgr5-shk8-4nmh Security Advisory

[MEDIUM] craftcms/cms vulnerable to cross site scripting in RSS feed widget

PKSA-wgr5-shk8-4nmh CVE-2023-31144 GHSA-j4mx-98hw-6rv6

Affected package: craftcms/cms

Affected version: >=4.0.0,<=4.4.3|>=3.0.0,<=3.8.3

Reported by:
GitHub