CVE-2026-34571 | ci4-cms-erp ci4ms 0.28.5.0 Administrative Interface cross site scripting (GHSA-fc4p-p49v-r948)

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability, which was classified as problematic, was found in ci4-cms-erp ci4ms 0.28.5.0. This affects an unknown part of the component Administrative Interface. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2026-34571. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2026-34571 | ci4-cms-erp ci4ms 0.28.5.0 Administrative Interface cross site scripting (GHSA-fc4p-p49v-r948)

Post correlati

CVE-2025-13255 | projectworlds Advanced Library Management System 1.0 /book_search.php book_pub/book_title sql injection

CVE-2025-46358 | Emerson ValveLink SOLO up to 13.x protection mechanism (icsa-25-189-01)

CVE-2021-27915 | Mautic description cross site scripting

CVE-2026-20867 | Microsoft race condition