October CMS version 3.4.0 suffers from a persistent cross site scripting vulnerability when a user has article posting capabilities.
d580a80cc73913f04ace7c62f85113ce9e77937e62898798e82b472da77074cf
October CMS version 3.4.0 suffers from a persistent cross site scripting vulnerability when a user has category-creating capabilities.
36668205e95cab2b322636af7be77779877c012806877e9084103fc48afda16b
October CMS version 3.4.0 suffers from a persistent cross site scripting vulnerability when a user has blog-creating capabilities.
96b738ec0ed1ddb9e322f25138fff8f77ecb84dbd07ba3530ee0039680c3f1c1
October CMS version 3.4.0 suffers from a persistent cross site scripting vulnerability when a user has author posting capabilities.
fa27de65868b7a449ef6325d904dca7874168f0b58c222353c466ee363abde93
October CMS version 3.4.0 suffers from a persistent cross site scripting vulnerability where a user has the ability to edit the landing/about page.
ca674a079c1f7de869829d79e2a37dbd839d64c194a488dc6d93277574fbe1fe