CVE-2026-33653 | farisc0de Uploady up to 3.1.1 Filename cross site scripting

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability classified as problematic was found in farisc0de Uploady up to 3.1.1. This impacts an unknown function of the component Filename Handler. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2026-33653. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-33653 | farisc0de Uploady up to 3.1.1 Filename cross site scripting

Post correlati

CVE-2024-30095 | Microsoft Windows up to Server 2022 23H2 Routing/Remote Access Service heap-based overflow

CVE-2024-1062 | 389-ds-base log_entry_attr heap-based overflow

CVE-2024-26084 | Adobe Experience Manager up to 6.5.19 Form Field cross site scripting (apsb24-21)

CVE-2024-8046 | Logo Showcase Ultimate PLugin up to 1.4.1 on WordPress SVG File Upload cross site scripting