CVE Notify
19.3K subscribers
4 photos
204K links
Alert on the latest CVEs

Partner channel: @malwr
Download Telegram
🚨 CVE-2026-14449
u5CMS through v12.8.8 is vulnerable to reflected XSS via the β€˜thanks’ parameter in multiple form components

πŸŽ–@cveNotify
🚨 CVE-2026-56037
Deserialization of Untrusted Data vulnerability in Themify Themify Popup allows Object Injection.

This issue affects Themify Popup: from n/a through 1.4.3.

πŸŽ–@cveNotify