CVE-2026-6956 - Reflected XSS in ATutor
CVE ID :CVE-2026-6956 Published : May 11, 2026, 10:16 a.m. | 49 minutes ago Description :ATutor is vulnerable to Reflected XSS in /install/install.php endpoint. An attacker can provide a specially crafted URL that, when opened, results in arbitrary JavaScript execution in the victim's browser.
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Ronin set to transition to Ethereum layer 2 from independent sidechain
- [CYBER] Python Infostealer Hides in GitHub Releases to Bypass Detection
- [CYBER] PHP SOAP Extension Flaw Could Let Attackers Execute Code Remotely
- [CYBER] Construction to Cyber PM
- [CYBER] Cyber Espionage Group Targets Aviation Firms to Steal Map Data
- [CYBER] Skoda Data Breach Hits Online Shop Customers