CVE-2026-26291 | GROWI up to 7.4.6 cross site scripting

Inserito da Angelo Barbosa | Apr 15, 2026 | CVE

A vulnerability was found in GROWI up to 7.4.6. It has been declared as problematic. Affected is an unknown function. Executing a manipulation can lead to cross site scripting.

The identification of this vulnerability is CVE-2026-26291. The attack may be launched remotely. There is no exploit available.

CVE-2026-26291 | GROWI up to 7.4.6 cross site scripting

Post correlati

CVE-2025-10042 | Quiz Maker Plugin up to 6.7.0.56 on WordPress Header X-Forwarded-For sql injection

CVE-2023-49166 | Magic Logix MSync Plugin up to 1.0.0 on WordPress sql injection

CVE-2025-8763 | Ruijie EG306MG 3.0(1)B11P309 strongSwan /etc/strongswan.conf missing encryption

CVE-2024-6911 | PerkinElmer ProcessPlus up to 1.11.6507.0 on Windows file access