haxtheweb Video Player Vulnerabilities
Haxtheweb Video-player vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
HAX CMS: Stored XSS via '<video-player>' component allows arbitrary JavaScript execution and token theft
CVE-2026-46496HaxthewebHaxcms-nodejs9.3CRITICALHAX CMS has a stored XSS via <iframe> that allows access to sensitive client-side data and account takeover
CVE-2026-46396HaxthewebHaxcms-nodejs9.3CRITICAL