CVE-2026-35569 | apostrophe up to 4.28.x Meta Description cross site scripting (GHSA-855c-r2vq-c292)

Inserito da Angelo Barbosa | Apr 16, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in apostrophe up to 4.28.x. Affected by this vulnerability is an unknown functionality of the component Meta Description Handler. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2026-35569. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

CVE-2026-35569 | apostrophe up to 4.28.x Meta Description cross site scripting (GHSA-855c-r2vq-c292)

Post correlati

CVE-2024-20456 | Cisco IOS XR 24.2.1 Secure Boot permission assignment (cisco-sa-xr-secure-boot-quD5g8Ap)

CVE-2025-36007 | IBM QRadar SIEM up to 7.5.0 UP13 IF02 privileges assignment

CVE-2025-14120 | URL Image Importer Plugin up to 1.0.7 on WordPress SVG File Upload cross site scripting

CVE-2023-48811 | Totolink X6000R 9.4.0cu.852_B20230719 shttpd sub_4119A0 Privilege Escalation