All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2026-14449
MEDIUMpublished 2026-07-02 12:16 UTC · 2 days ago · modified 2026-07-02 17:42 UTC
6.4
CVSS / 10
// description
u5CMS through v12.8.8 is vulnerable to reflected XSS via the ‘thanks’ parameter in multiple form components
// weaknesses (CWE)
- CWE-79