Medium CVE-2026-46609 Umbraco is an ASP.NET CMS. From version 14.0.0 to before version 17.4.0, authenticated users are able to inject HTML into an input field, which is rendered in the confirmation dialog without proper output encoding. This issue has been patched in version 17.4.0. CVSS: 4.6 ·...

#Sicherheitslücke #Update

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

[Medium] CVE-2026-46609 – Umbraco is an ASP.NET CMS. From version 14.0.0 to before version 17.4.0, authent...

VERWANDTEARTIKEL

CVE-2026-42908

CVE-2026-45639

[High] CVE-2026-53738 – Copy & Delete Posts through 1.5.4 lets any plugin-enabled non-admin role invoke ...

[Medium] CVE-2026-53739 – Yoast Duplicate Post through 4.6 contains a cross-site request forgery vulnerabi...

[Medium] CVE-2026-53740 – Yoast Duplicate Post through 4.6 inserts an unescaped post title and permalink i...

[Medium] CVE-2026-53741 – Simple Link Directory through 9.0.4 interpolates the sld_no_results_found option...