CVE-2026-7429 - SSCMS v7.4.0 Reflected Cross-Site Scripting via STL Processing
CVE ID :CVE-2026-7429 Published : April 30, 2026, 8:16 p.m. | 26 minutes ago Description :SSCMS v7.4.0 contains a reflected cross-site scripting vulnerability in the STL processing endpoint that allows attackers to execute arbitrary JavaScript by crafting malicious STL template payloads that a
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 'It quickly becomes an efficient and economically feasible solution': This wild saltwater hack could make data centers cooler, cheaper, and unexpectedly water-positive
- [CYBER] Update to Original Post -- I did not get the job :( (https://www.reddit.com/r/cybersecurity/comments/1st1sjp/comment/oiduymf/?context=3)
- [CYBER] French Prosecutors Link 15-Year-Old To Mega-Breach At State's Secure Document Agency
- [CYBER] Ransomware accidentally destroys all files larger than 128KB, preventing decryption — VECT code likely partly vibe coded with AI or used an old code base, security researchers suggest
- [CYBER] Linux’ta Yıllardır Kapatılmayan Açık Tespit Edildi
- [CYBER] Bot her emails: most modern phishing campaigns are AI-enabled