CVE-2026-45014
Vulnerability Description
ApostropheCMS is an open-source Node.js content management system. Versions up to and including 4.29.0 are vulnerable to stored cross-site scripting via unsanitized user display name in draft version tooltip. As of time of publication, no known patched versions are available.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-79
Source
NVD
Vendor
apostrophecms
Product
apostrophe
Discussion (0)
Add Comment
No comments yet. Be the first!