CVE-2026-21451 | Bagisto up to 2.3.9 CMS Page Editor cross site scripting (GHSA-2mwc-h2mg-v6p8)

A vulnerability was found in Bagisto up to 2.3.9. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component CMS Page Editor. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-21451. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More