SecBoard
Zurück zur CVE-Übersicht

CVE-2026-37700

MEDIUM(4.1)

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N

Risk Signal Score10/100 — NIEDRIG
  • CVSS 4.1 — Mittel

EPSS-Score

0%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

4.1

Technische Schwere

Beschreibung

Cross Site Scripting vulnerability in MaxSite CMS v.109.2 allows a remote attacker to obtain sensitive information via the Backend page file upload endpoint used by admin_page

Referenzen