CVE-2026-45014 | apostrophecms apostrophe up to 4.29.0 User Display Name cross site scripting (GHSA-hvx2-4ghc-j37m)

Inserito da Angelo Barbosa | Giu 13, 2026 | CVE

A vulnerability was found in apostrophecms apostrophe up to 4.29.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component User Display Name Handler. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-45014. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-45014 | apostrophecms apostrophe up to 4.29.0 User Display Name cross site scripting (GHSA-hvx2-4ghc-j37m)

Post correlati

CVE-2024-34500 | MediaWiki up to 1.39.5/1.40.1/1.41.0 UnlinkedWikibase Extension Html::rawElement err cross site scripting

CVE-2025-15434 | Yonyou KSOA 9.0 /kp/PrintZPYG.jsp zpjhid sql injection

CVE-2024-1946 | Genesis Blocks Plugin up to 3.1.2 on WordPress Block Content cross site scripting

CVE-2026-7032 | Tenda F456 1.0.0.5 /goform/SafeEmailFilter page buffer overflow