CVE-2026-27937 | October CMS up to 3.7.15/4.1.15 DataTable Widget cross site scripting

A vulnerability has been found in October CMS up to 3.7.15/4.1.15 and classified as problematic. This vulnerability affects unknown code of the component DataTable Widget. Performing a manipulation results in cross site scripting.

This vulnerability is known as CVE-2026-27937. Remote exploitation of the attack is possible. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More