Security Advisory

CVE-2026-32278

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-23 21:28:31

Last updated 2026-03-24 18:41:41

Assigner GitHub_M

State PUBLISHED

Description

Connect-CMS is a content management system. In versions on the 1.x series up to and including 1.41.0 and versions on the 2.x series up to and including 2.41.0, a Stored Cross-site Scripting (XSS) issue exists in the file field of the Form Plugin. Versions 1.41.1 and 2.41.1 contain a patch.

← Browse all CVEs View on cve.org ↗