CVE-2023-28836

Wagtail cross-site scripting | CVE-2023-28836

NAME__________Wagtail cross-site scriptingPlatforms Affected:Wagtail Wagtail 1.5 Wagtail Wagtail 4.1.3 Wagtail Wagtail 4.2Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Wagtail is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated…