CVE-2026-6953
Vulnerability Description
HTML injection vulnerability in Intermark IT's WebControl CMS v3.5. This vulnerability allows an attacker to send an email containing malicious HTML code to a victim via the contact form. To exploit this vulnerability, the attacker must send a request using the 'nombreApellidos', 'dirección ', and 'comentarios ' parameters to '/processContact.do'.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-79
Source
NVD
Discussion (0)
Add Comment
No comments yet. Be the first!