cyberMEDIUM2026-04-30 18:16 UTC

CVE-2026-36763 - SpringBlade Stored Cross-Site Scripting (XSS)

CVE ID :CVE-2026-36763 Published : April 30, 2026, 6:16 p.m. | 26 minutes ago Description :A stored cross-site scripting (XSS) vulnerability in the /api/blade-desk/notice/submit endpoint of SpringBlade v4.8.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted inp

ORIGINAL SOURCE →via CVE Feed Latest

⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

[CYBER] Chinese hackers vulnerable to U.S. arrest if they travel, FBI official says
[CYBER] FBI cyber boss: China's hacker-for-hire ecosystem 'out of control'
[CYBER] After dissing Anthropic for limiting Mythos, OpenAI restricts access to Cyber, too
[CYBER] New Bluekit phishing service includes an AI assistant, 40 templates
[CYBER] Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge
[CYBER] AI Fuels ‘Industrial’ Cybercrime as Time-to-Exploit Shrinks to Hours

Editorial policy · Report a correction