CVE-2026-26682 | fastCMS up to 0.1.5 PluginController.java Local Privilege Escalation

Inserito da Angelo Barbosa | Feb 26, 2026 | CVE

A vulnerability was found in fastCMS up to 0.1.5 and classified as problematic. Affected by this issue is some unknown functionality of the file PluginController.java. The manipulation results in Local Privilege Escalation.

This vulnerability is known as CVE-2026-26682. Attacking locally is a requirement. No exploit is available.

It is suggested to upgrade the affected component.

CVE-2026-26682 | fastCMS up to 0.1.5 PluginController.java Local Privilege Escalation

Post correlati

CVE-2024-29921 | Supsystic Photo Gallery Plugin up to 1.15.16 on WordPress cross site scripting

CVE-2024-48255 | Cloudlog 2.6.15 Oqrs.php get_station_info station_id sql injection

CVE-2024-49764 | LibreNMS up to 24.10.0 Capture Debug Information Page hostname cross site scripting

CVE-2025-8191 | macrozheng mall up to 1.0.3 Swagger UI /swagger-ui/index.html configUrl cross site scripting