CVE-2026-34558 | ci4-cms-erp ci4ms 0.28.5.0 cross site scripting (GHSA-v77r-xg3p-75g7)

Inserito da Angelo Barbosa | Mar 30, 2026 | CVE

A vulnerability has been found in ci4-cms-erp ci4ms 0.28.5.0 and classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-34558. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-34558 | ci4-cms-erp ci4ms 0.28.5.0 cross site scripting (GHSA-v77r-xg3p-75g7)

Post correlati

CVE-2023-49250 | Apache DolphinScheduler up to 3.2.0 HTTPS Connection HttpUtils certificate validation

CVE-2024-13490 | enituretechnology LTL Freight Quotes Plugin up to 4.3.7 on WordPress edit_id/dropship_edit_id sql injection

CVE-2020-37127 | dnsmasq dnsmasq-utils 2.79-1 dhcp_release stack-based overflow (Exploit 48301)

CVE-2024-53298 | Dell PowerScale OneFS up to 9.10.0.1 NFS Export authorization (dsa-2025-208)