[OrchardCore.Application.Cms.Targets] Cross-site Scripting OrchardCore.Application.Cms.Targets

Cross-site Scripting (XSS) – Stored in NuGet OrchardCore.Application.Cms.Targets prior to 1.2.2.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-0274
• https://github.com/orchardcms/orchardcore/commit/218f25ddfadb66a54de7a82dffe3ab2e4ab7c4b4
• https://huntr.dev/bounties/a82a714a-9b71-475e-bfc3-43326fcaf764
• https://github.com/advisories/GHSA-r8hp-5m7c-jhv4