CVE-2026-28426 | Statamic CMS up to 5.73.10/6.3.x cross site scripting (GHSA-5vrj-wf7v-5wr7)

Inserito da Angelo Barbosa | Feb 28, 2026 | CVE

A vulnerability was found in Statamic CMS up to 5.73.10/6.3.x. It has been rated as problematic. This affects an unknown function. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-28426. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-28426 | Statamic CMS up to 5.73.10/6.3.x cross site scripting (GHSA-5vrj-wf7v-5wr7)

Post correlati

CVE-2024-10575 | Schneider Electric EcoStruxure IT Gateway 1.21.0.6/1.22.0.3/1.22.1.5/1.23.0.4 authorization (SEVD-2024-317-04)

CVE-2025-54039 | Toast Plugins Animator Plugin up to 3.0.16 on WordPress cross-site request forgery

CVE-2025-9101 | zhenfeng13 My-Blog up to 1.0.0 Tag /admin/tags/save cross site scripting (Issue 147)

CVE-2023-32264 | OpenText Documentum D2 up to 23.2 missing origin validation in websockets (KB0799355)