CVE-2026-38669 | wCMS 1.4 New Blog cross site scripting

Inserito da Angelo Barbosa | Mag 4, 2026 | CVE

A vulnerability, which was classified as problematic, was found in wCMS 1.4. Impacted is an unknown function of the component New Blog Handler. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-38669. The attack can be launched remotely. No exploit exists.

CVE-2026-38669 | wCMS 1.4 New Blog cross site scripting

Post correlati

CVE-2025-24970 | netty up to 4.1.117.Final Packet denial of service (GHSA-4g8c-wm8x-jfhw)

CVE-2024-20437 | Cisco IOS XE up to 17.12.1y Web UI cross-site request forgery (cisco-sa-webui-csrf-ycUYxkKO)

CVE-2025-6673 | Easy Restaurant Menu Manager Plugin up to 2.0.1 on WordPress Shortcode nsc_eprm_menu_link cross site scripting

CVE-2024-2764 | Tenda AC10U 15.03.06.48 /goform/SetPptpServerCfg formSetPPTPServer endIP stack-based overflow