CVE-2026-9608 | QianFox FoxCMS up to 1.2.6 Administrator Backend /Tag/edit cross site scripting

May 26, 2026 Yanac

A vulnerability classified as problematic was found in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting.

This vulnerability is registered as CVE-2026-9608. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More