Django CMS: Stored XSS Vulnerability in Attributes Fields - Proactive Insights and Support For Open-Source Applications

In Django CMS versions before 4.0 a medium severity vulnerability CVE-2024-11406 was detected. This vulnerability allows Stored Cross-Site Scripting (XSS) through improper neutralization of input in Django CMS Attributes Fields. To address this issue, update to Django CMS version 4.0 or later. For more details, visit https://avd.aquasec.com/nvd/2024/cve-2024-11406.