Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via /admin/auth/menu and /admin/auth/extensions.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| dcat/laravel-admin(Packagist) | N/A | N/A | N/A |
| dcat/laravel-admin(Packagist) | N/A | N/A | N/A |
CVSS Metrics
