CVE-2026-24352 | PluXml CMS 5.8.21/5.9.0-rc7 Session Identifier session fixiation

Inserito da Angelo Barbosa | Feb 27, 2026 | CVE

A vulnerability classified as critical was found in PluXml CMS 5.8.21/5.9.0-rc7. Impacted is an unknown function of the component Session Identifier Handler. Executing a manipulation can lead to session fixiation.

This vulnerability is handled as CVE-2026-24352. The attack can be executed remotely. There is not any exploit available.

CVE-2026-24352 | PluXml CMS 5.8.21/5.9.0-rc7 Session Identifier session fixiation

Post correlati

CVE-2024-51751 | Gradio up to 5.4.x File/UploadButton path traversal

CVE-2026-23704 | Six Apart Movable Type 8.4 unrestricted upload

CVE-2022-48685 | Logpoint up to 7.1.1 clean_secbi_old_logs Local Privilege Escalation

CVE-2024-28973 | Dell PowerProtect DD prior 8.0 Trusted Application Data Store cross site scripting (dsa-2024-219)