CVE-2026-3317 | Navigate CMS up to 2.9.5 /blog cross site scripting

Inserito da Angelo Barbosa | Apr 21, 2026 | CVE

A vulnerability was found in Navigate CMS up to 2.9.5 and classified as problematic. This affects an unknown function of the file /blog. Executing a manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-3317. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-3317 | Navigate CMS up to 2.9.5 /blog cross site scripting

Post correlati

CVE-2026-6119 | AstrBotDevs AstrBot up to 4.22.1 API Endpoint post_data.get server-side request forgery (Issue 7171)

CVE-2025-5119 | Emlog Pro 2.5.11 api_controller.php tag sql injection

CVE-2025-21491 | Oracle MySQL Server up to 8.0.40/8.4.3/9.1.0 InnoDB improper authorization

CVE-2024-4469 | WP STAGING Backup Plugin up to 3.5.0 on WordPress server-side request forgery