15 matches found
CVE-2026-26043
Not used...
PT-2026-7981
CVE-2026-26043 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2026-26043 Published : Feb. 11, 2026, 5:16 a.m. | 2 hours, 4 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...
CVE-2022-26043
An external config control vulnerability exists in the OAS Engine SecureAddSecurity functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to the creation of a custom Security Group. An attacker can send a sequence of requests t...
CVE-2023-26043
GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. GeoNode is vulnerable to an XML External Entity XXE injection in the style upload functionality of GeoServer leading to Arbitrary File Read. This issue has been patched in version...
CVE-2024-26043
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...
CVE-2024-26043
CVE-2024-26043 concerns a stored Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager (AEM) versions 6.5.19 and earlier. The issue allows an attacker to inject malicious scripts into vulnerable form fields, with JavaScript executed in a victim’s browser upon visiting the affected ...
cartoview (>=1.8.2 <=1.8.4) potentially affected by CVE-2023-26043 via geonode (>=2.10.4 <=2.8.1)
geonode PYPI version =2.10.4, =1.8.2, =1.8.4 Source cves: CVE-2023-26043 Source advisory: OSV:PYSEC-2023-15...
CVE-2023-26043 XML External Entity (XXE) injection in GeoServer style upload functionality
GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. GeoNode is vulnerable to an XML External Entity XXE injection in the style upload functionality of GeoServer leading to Arbitrary File Read. This issue has been patched in version...
CVE-2022-26043
CVE-2022-26043 affects Open Automation Software OAS Platform 16.00.0112, specifically the OAS Engine SecureAddSecurity function. TALOS details an external config control vulnerability where unauthenticated config messages can create a custom Security Group, enabling file-transfer permissions and ...
CVE-2022-26043
An external config control vulnerability exists in the OAS Engine SecureAddSecurity functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to the creation of a custom Security Group. An attacker can send a sequence of requests t...
CVE-2021-26043
...
Hoosk CMS Cross Site Scripting (CVE-2020-26043)
A cross-site scripting vulnerability exists in Hoosk CMS. Successful exploitation of this vulnerability could allow remote attackers to inject arbitrary web script into the affected system...
CVE-2020-26043
CVE-2020-26043 is a reported XSS in Hoosk CMS v1.8.0, specifically in install/index.php. The connected sources confirm a cross-site scripting vulnerability, with the Red Hat/OSV entries and PRION advisories reiterating the same issue. The available documents do not provide technical details about...
CVE-2026-26043
...
CVE-2026-26043
CVE-2026-26043 entry is rejected and not used per Initial Description.