CVE-2026-46392 | haxtheweb haxcms-php up to 25.x HTML File case sensitivity (GHSA-hg33-w4j2-95qp)

A vulnerability, which was classified as critical, was found in haxtheweb haxcms-php up to 25.x. Affected is an unknown function of the component HTML File Handler. Such manipulation leads to improper handling of case sensitivity.

This vulnerability is uniquely identified as CVE-2026-46392. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More