B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
nvd.nist.gov
RISK: Mittel (4.0)

[Medium] CVE-2026-41846 – Spring MVC applications which accept user-supplied values in the cssClass, cssEr...

Medium CVE-2026-41846 Spring MVC applications which accept user-supplied values in the cssClass, cssErrorClass, or cssStyle attributes of JSP form tags allow arbitrary HTML/JavaScript code injection, potentially resulting in a cross-site scripting (XSS) vulnerability. Affected versions: Spring...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-49741 - TYPO3 CMS - Privilege Escalation & SQL Injection in Form Framework

2026-06-09 Mittel

Google fixes the fifth actively exploited Chrome zero-day of 2026

2026-06-09 Kritisch

CVE-2026-46746 - Siemens SINEC INS Command Injection

2026-06-09 Mittel

CVE-2026-46748 - SINEC INS Local Privilege Escalation via CAP_DAC_OVERRIDE

2026-06-09 Mittel

CVE-2026-41031 - A Stored Cross-Site Scripting (XSS) vulnerability occurs in Vinna Process Monitor

2026-06-09 Mittel

CVE-2026-10731 - SQL injection in Nemon products

2026-06-09 Mittel