CyberRota
← Ana sayfaya dön

CVE-2026-53737

MEDIUM · CVSS 6.1 EPSS %0.16

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-10T22:17:01.957 · Çekilme zamanı: 2026-06-30T12:16:52.054959+00:00

CyberRota Yorumu

Uzaktan istismar edilebilir olabilir.

CVE
CVE-2026-53737
Severity
MEDIUM
CVSS
6.1
EPSS
%0.16

Orijinal NVD Açıklaması

Juicer through 1.12.18 fails to escape remote feed API response fields before rendering them on the admin settings page. Attackers controlling the connected feed data can inject script that executes in an administrator's browser when the settings page loads.