CVE-2026-27126 | Craft CMS up to 4.16.18/5.8.22 editabletable.twig cross site scripting (GHSA-3jh3-prx3-w6wc)

Inserito da Angelo Barbosa | Feb 24, 2026 | CVE

A vulnerability was found in Craft CMS up to 4.16.18/5.8.22. It has been rated as problematic. This vulnerability affects unknown code of the file editabletable.twig. This manipulation causes cross site scripting.

This vulnerability is registered as CVE-2026-27126. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-27126 | Craft CMS up to 4.16.18/5.8.22 editabletable.twig cross site scripting (GHSA-3jh3-prx3-w6wc)

Post correlati

CVE-2025-54962 | thiagoralves OpenPLC v3 up to 9cd8f1b53a50f9d38708096bfc72bcbb1ef47343 /edit-user unrestricted upload

CVE-2024-48208 | pure-ftpd up to 1.0.51 ls.c domlsd out-of-bounds

CVE-2024-46327 | Vonets VAP11G-300 3.3.23.6.9 Http_handle path traversal

CVE-2024-40543 | Sanluan PublicCMS 4.0.202302.e ueditor server-side request forgery