CVE-2026-38669

Published: Mag 04, 2026 Last Modified: Mag 04, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

wCMS v.1.4 is vulnerable to Cross Site Scripting (XSS) when creating a new blog.

https://github.com/thv930/yumeng_wu/tree/main/1/readme.md

https://github.com/thv930/yumeng_wu/tree/main/1/readme.md