CVE-2026-33400 | ellite Wallos up to 4.6.x Statistics Page payment cross site scripting

Inserito da Angelo Barbosa | Mar 24, 2026 | CVE

A vulnerability has been found in ellite Wallos up to 4.6.x and classified as problematic. The affected element is the function payment of the component Statistics Page. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2026-33400. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2026-33400 | ellite Wallos up to 4.6.x Statistics Page payment cross site scripting

Post correlati

CVE-2024-12463 | Arena.IM Plugin up to 0.3.0 on WordPress Shortcode arena_embed_amp cross site scripting

CVE-2025-8765 | Datacom DM955 5GT 1200 825.8010.00 Wireless Basic Settings SSID cross site scripting

CVE-2025-8108 | Axis AXIS OS up to 12.7.32 ACAP Configuration File improper validation of specified type of input

CVE-2024-46778 | Linux Kernel up to 6.10.9 AMD Display CalculateSwathAndDETConfiguration_params_st Privilege Escalation (4e2b49a85e79/a7b38c785209)