CVE-2022-35587 Information

Description

A cross-site scripting (XSS) issue in the Fork version 5.9.3 allows remote attackers to inject JavaScript via the \publish_on_date\ Parameter

Reference

https://huntr.dev/bounties/6-other-forkcms/