CVE-2026-29840 | JiZhiCMS up to 2.5.6 POST Request UserController.php body cross site scripting

A vulnerability described as problematic has been identified in JiZhiCMS up to 2.5.6. This impacts an unknown function of the file app/home/c/UserController.php of the component POST Request Handler. The manipulation of the argument body results in cross site scripting.

This vulnerability is reported as CVE-2026-29840. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More