CVE-2026-49867 | DataEase up to 2.10.22 Template Management save saveFilesToServe staticResource cross site scripting

SecurityVulns

A vulnerability identified as problematic has been detected in DataEase up to 2.10.22. Impacted is the function saveFilesToServe of the file /de2api/templateManage/save of the component Template Management. Performing a manipulation of the argument staticResource results in cross site scripting.

This vulnerability is known as CVE-2026-49867. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More