CVE-2026-27746 | SPIP jeux up to 4.1.0 pre_propre cross site scripting

Inserito da Angelo Barbosa | Feb 25, 2026 | CVE

A vulnerability categorized as problematic has been discovered in SPIP jeux up to 4.1.0. This affects an unknown function of the component pre_propre. Executing a manipulation can lead to cross site scripting.

This vulnerability is registered as CVE-2026-27746. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-27746 | SPIP jeux up to 4.1.0 pre_propre cross site scripting

Post correlati

CVE-2024-2188 | TP-Link Archer AX50 1.0.11 Build 2022052 SOAP Request cross site scripting

CVE-2026-0798 | Gitea up to 1.25.3 Notifications access control (GHSA-f4wq-6ww5-m56p)

CVE-2024-6929 | Dynamic Featured Image Plugin up to 3.7.0 on WordPress dfiFeatured cross site scripting

CVE-2023-28865 | Diebold Nixdorf Vynamic Security Suite up to 3.3.0 SR14/4.0.0 SR04/4.1.0 SR02/4.2.0 SR01 Pre-Boot Authorization improper authorization