CVE-2026-36766 - Shopizer Cross-Site Scripting (XSS) Vulnerability
CVE ID :CVE-2026-36766 Published : April 30, 2026, 6:16 p.m. | 26 minutes ago Description :Multiple authenticated cross-site scripting (XSS) vulnerabilities in the XssHttpServletRequestWrapper class of shopizer v3.2.5 allows attackers to execute arbitrary web scripts or HTML via injecting a cr
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Chinese hackers vulnerable to U.S. arrest if they travel, FBI official says
- [CYBER] FBI cyber boss: China's hacker-for-hire ecosystem 'out of control'
- [CYBER] After dissing Anthropic for limiting Mythos, OpenAI restricts access to Cyber, too
- [CYBER] New Bluekit phishing service includes an AI assistant, 40 templates
- [CYBER] Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge
- [CYBER] AI Fuels ‘Industrial’ Cybercrime as Time-to-Exploit Shrinks to Hours