CVE-2026-40544 | SOPlanning up to 1.55 ZIP /process/upload_backup cross site scripting

Inserito da Angelo Barbosa | Giu 1, 2026 | CVE

A vulnerability was found in SOPlanning up to 1.55. It has been declared as problematic. Affected by this issue is some unknown functionality of the file /process/upload_backup of the component ZIP Handler. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2026-40544. The attack can be launched remotely. No exploit exists.

CVE-2026-40544 | SOPlanning up to 1.55 ZIP /process/upload_backup cross site scripting

Post correlati

CVE-2024-36532 | kruise 1.6.2 Service Account Token permission

CVE-2026-3747 | itsourcecode University Management System 1.0 /add_result.php subject sql injection

CVE-2024-10786 | Simple Local Avatars Plugin up to 2.7.11 on WordPress User Cache authorization

CVE-2024-22091 | Mattermost up to 8.1.11/9.5.2/9.6.0/9.7.0 Request Path resource consumption