CVE-2026-40028 | Yamato-Security hayabusa up to 3.7.0/3.7.x Computer cross site scripting

Inserito da Angelo Barbosa | Apr 9, 2026 | CVE

A vulnerability described as problematic has been identified in Yamato-Security hayabusa up to 3.7.0/3.7.x. The affected element is an unknown function. Executing a manipulation of the argument Computer can lead to cross site scripting.

The identification of this vulnerability is CVE-2026-40028. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-40028 | Yamato-Security hayabusa up to 3.7.0/3.7.x Computer cross site scripting

Post correlati

CVE-2024-2077 | SourceCodester Simple Online Bidding System 1.0 index.php category_id sql injection

CVE-2025-7401 | Premium Age Verification Restriction Plugin up to 3.0.2 on WordPress remote_tunnel.php path traversal

CVE-2024-13904 | platformly WooCommerce Plugin up to 1.1.6 on WordPress hooks server-side request forgery

CVE-2024-40617 | Fujitsu Network Edgiot GW1500 prior V02L19C01 Request information disclosure