Opublikowane
2026-03-18 12:00
Security Risk
Moderately Critical
Vulnerability
Cross Site Scripting
Affected Versions
Dropdown Options (XSS)
Fixed Versions
CiviCRM v6.12.1, v6.10.3 (ESR), and later
Publication Date
Solutions
Upgrade to a fixed version of CiviCRM
Credits
Lassi (lassitemp@proton.me), Seamus Lee (JMA Consulting), Luke Stewart (Fuzion), Coleman Watts (CiviCRM), Tim Otten (CiviCRM)
