CVE-2026-2897 in funadmininformação

Sumário

de MITRE • 22/02/2026

A security vulnerability has been detected in funadmin up to 7.1.0-rc4. This vulnerability affects unknown code of the file app/backend/view/index/index.html of the component Backend Interface. The manipulation of the argument Value leads to cross site scripting. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulDB

Divulgação

22/02/2026

Moderação

aceite

Entrada

VDB-347208

CPE

pronto

CWE

CWE-79 (confirmado)

Exploração

Descarregar

CVSS

2.4 (CNA)

EPSS

0.00041

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-2897
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-2897
CVE Details	https://www.cvedetails.com/cve/CVE-2026-2897/

◂ Voltar Visão Geral Próximo ▸

Want to know what is going to be exploited?

We predict KEV entries!