CVE-2026-29933 - CERT CVE

  1. CVE-2026-29933

ID CVE-2026-29933
Sažetak A reflected cross-site scripting (XSS) vulnerability in the /index/login.html component of YZMCMS v7.4 allows attackers to execute arbitrary Javascript in the context of the user's browser via modifying the referrer value in the request header.
Reference
CVSS
Base: 0.0
Impact: None
Exploitability:None
Pristup
VektorSloženostAutentikacija
None None None
Impact
PovjerljivostCjelovitostDostupnost
None None None
CVSS vektor None
Zadnje važnije ažuriranje 26-03-2026 - 15:16
Objavljeno 26-03-2026 - 15:16