CVE-2026-24350 | PluXml CMS 5.8.21/5.9.0-rc7 SVG File Parser cross site scripting

Inserito da Angelo Barbosa | Feb 27, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in PluXml CMS 5.8.21/5.9.0-rc7. The affected element is an unknown function of the component SVG File Parser. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-24350. The attack is possible to be carried out remotely. No exploit exists.

CVE-2026-24350 | PluXml CMS 5.8.21/5.9.0-rc7 SVG File Parser cross site scripting

Post correlati

CVE-2025-32297 | Simple Link Directory Plugin up to 14.7.3 on WordPress sql injection

CVE-2025-0728 | Eclipse ThreadX NetX Duo up to 6.4.1 Packets integer underflow

CVE-2025-0525 | Octopus Deploy Octopus Server information exposure

CVE-2025-8224 | GNU Binutils 2.44 BFD Library bfd/elf.c bfd_elf_get_str_section null pointer dereference