CVE-2026-54714: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in logto-io logto
CVE-2026-54714 is a cross-site scripting (XSS) vulnerability in the open-source authentication infrastructure Logto prior to version 1.41.0. The vulnerability arises because the SAML RelayState…
Read the full article13h agoen
You might also wanna read
'Ghostcommit' hides prompt injection in images to fool AI agents, steal secrets
radar.offseq.com·19m ago
Wireshark 4.6.7 Released, (Sat, Jul 11th)
radar.offseq.com·19m ago
CVE-2026-9017: CWE-862 Missing Authorization in webaways NEX-Forms – Ultimate Forms Plugin for WordPress
radar.offseq.com·2h ago
CVE-2026-15010: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in robin-w bbp style pack
radar.offseq.com·2h ago
CVE-2026-12994: CWE-862 Missing Authorization in wclovers WCFM – Frontend Manager for WooCommerce
radar.offseq.com·3h ago
CVE-2026-6801: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor in postmagthemes Context Blog
radar.offseq.com·3h ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.