CVE-2026-36761 - JeeSite Stored XSS Vulnerability
CVE ID :CVE-2026-36761 Published : April 30, 2026, 6:16 p.m. | 26 minutes ago Description :A stored cross-site scripting (XSS) vulnerability in the /msg/msgInner/save endpoint of JeeSite v5.15.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted input into the ms
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 'Nearly two-thirds of spam came from US-based infrastructure': Your free Gmail account could be helping criminals send 46% of all commercial spam while wearing down employees with email fatigue
- [CYBER] Clever Raspberry Pi hack gets Sony's PS5 controller working properly on a gaming PC over Bluetooth
- [CYBER] Chinese hackers vulnerable to U.S. arrest if they travel, FBI official says
- [CYBER] FBI cyber boss: China's hacker-for-hire ecosystem 'out of control'
- [CYBER] After dissing Anthropic for limiting Mythos, OpenAI restricts access to Cyber, too
- [CYBER] New Bluekit phishing service includes an AI assistant, 40 templates