CVE-2026-12866 | silentmatt expr-eval Expressions toJSFunction code injection (ID 292)

Inserito da Angelo Barbosa | Giu 23, 2026 | CVE

A vulnerability, which was classified as critical, was found in silentmatt expr-eval. This affects the function toJSFunction of the component Expressions Handler. The manipulation results in code injection.

This vulnerability is cataloged as CVE-2026-12866. The attack may be launched remotely. There is no exploit available.

CVE-2026-12866 | silentmatt expr-eval Expressions toJSFunction code injection (ID 292)

Post correlati

CVE-2024-41045 | Linux Kernel up to 6.9.9 bpf_timer_cancel_and_free initialization (7aa5a19279c3/a6fcd19d7eac)

CVE-2024-30218 | SAP NetWeaver AS ABAP and ABAP Platform up to 7.93 resource consumption

CVE-2024-43311 | Geek Code Lab Login As Users Plugin up to 1.4.2 on WordPress privileges management

CVE-2024-47290 | Huawei HarmonyOS/EMUI USB Service Module null pointer dereference