CVE-2026-41467 | ProjeQtor up to 12.4.3 File checkValidFileName cross site scripting

Inserito da Angelo Barbosa | Apr 27, 2026 | CVE

A vulnerability identified as problematic has been detected in ProjeQtor up to 12.4.3. Impacted is the function checkValidFileName of the component File Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-41467. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-41467 | ProjeQtor up to 12.4.3 File checkValidFileName cross site scripting

Post correlati

CVE-2024-33921 | ReviewX Plugin up to 1.6.21 on WordPress access control

CVE-2024-30953 | Htmly 2.9.5 Menu Editor Module Link Name cross site scripting

CVE-2024-5608 | Zoho ManageEngine ADAudit Plus up to 8120 Technician Reports sql injection

CVE-2024-32079 | Michael Dempfle Advanced iFrame Plugin up to 2024.2 on WordPress cross site scripting