CVE-2026-39428 | Cubecart up to 6.5.x cross site scripting (GHSA-gvxc-5v7r-272m)

May 14, 2026 Yanac

A vulnerability was found in Cubecart up to 6.5.x. It has been classified as problematic. Impacted is an unknown function. Performing a manipulation results in cross site scripting.

This vulnerability was named CVE-2026-39428. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More

CVE-2026-44380 | MISP up to 2.5.36 authorization (GHSA-3939-4g6m-m3hc)
CVE-2026-44193 | OPNsense up to 26.1.6 XMLRPC opnsense.restore_config_section argument injection (GHSA-xxp9-93cr-x54p)