<?xml version="1.0" encoding="UTF-8"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/">
  <channel>
    <title>CVE-2026-11434</title>
    <link>https://www.cvehunters.com/p/cve-2026-11434/</link>
    <description>Cross-Site Scripting (XSS) Stored</description>
    <atom:link href="https://www.cvehunters.com/p/cve-2026-11434/index.xml" rel="self" type="application/rss+xml"/>

    <item>
      <title>CVE-2026-11434</title>
      <link>https://www.cvehunters.com/p/cve-2026-11434/</link>
      <guid>https://www.cvehunters.com/p/cve-2026-11434/</guid>
      <description>&amp;lt;h2 id=&amp;#34;cve-2026-11434-cross-site-scripting-xss-stored-in-in-endpoint-adminblocks-via-blocks-plugin&amp;#34;&amp;gt;CVE-2026-11434: Cross-Site Scripting (XSS) Stored in in endpoint &amp;lt;code&amp;gt;/admin/blocks&amp;lt;/code&amp;gt; via &amp;lt;code&amp;gt;Blocks Plugin&amp;lt;/code&amp;gt;
&amp;lt;/h2&amp;gt;&amp;lt;blockquote&amp;gt;
&amp;lt;p&amp;gt;&amp;lt;em&amp;gt;&amp;lt;strong&amp;gt;CVE Publication: &amp;lt;a class=&amp;#34;link&amp;#34; href=&amp;#34;https://www.cve.org/CVERecord?id=CVE-2026-11434&amp;#34;  target=&amp;#34;_blank&amp;#34; rel=&amp;#34;noopener&amp;#34;
    &amp;gt;https://www.cve.org/CVERecord?id=CVE-2026-11434&amp;lt;/a&amp;gt;&amp;lt;/strong&amp;gt;&amp;lt;/em&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;/blockquote&amp;gt;
&amp;lt;h2 id=&amp;#34;summary&amp;#34;&amp;gt;Summary
&amp;lt;/h2&amp;gt;&amp;lt;p style=&amp;#34;text-align: justify;&amp;#34;&amp;gt;A Stored Cross-Site Scripting (XSS) vulnerability was identified in the &amp;lt;code&amp;gt;/admin/blocks&amp;lt;/code&amp;gt;  endpoint of the FluentCMS application. This vulnerability allows attackers to inject malicious scripts via &amp;lt;code&amp;gt;Blocks Plugin&amp;lt;/code&amp;gt;. The injected scripts are stored on the server and executed automatically whenever the main page is accessed by users, posing a significant security risk.&amp;lt;/p&amp;gt;
&amp;lt;h2 id=&amp;#34;details&amp;#34;&amp;gt;Details
&amp;lt;/h2&amp;gt;&amp;lt;p&amp;gt;Vulnerable Endpoint: &amp;lt;code&amp;gt;/admin/blocks&amp;lt;/code&amp;gt;&amp;lt;/p&amp;gt;</description><content:encoded>&amp;lt;h2 id=&amp;#34;cve-2026-11434-cross-site-scripting-xss-stored-in-in-endpoint-adminblocks-via-blocks-plugin&amp;#34;&amp;gt;CVE-2026-11434: Cross-Site Scripting (XSS) Stored in in endpoint &amp;lt;code&amp;gt;/admin/blocks&amp;lt;/code&amp;gt; via &amp;lt;code&amp;gt;Blocks Plugin&amp;lt;/code&amp;gt;
&amp;lt;/h2&amp;gt;&amp;lt;blockquote&amp;gt;
&amp;lt;p&amp;gt;&amp;lt;em&amp;gt;&amp;lt;strong&amp;gt;CVE Publication: &amp;lt;a class=&amp;#34;link&amp;#34; href=&amp;#34;https://www.cve.org/CVERecord?id=CVE-2026-11434&amp;#34;  target=&amp;#34;_blank&amp;#34; rel=&amp;#34;noopener&amp;#34;
    &amp;gt;https://www.cve.org/CVERecord?id=CVE-2026-11434&amp;lt;/a&amp;gt;&amp;lt;/strong&amp;gt;&amp;lt;/em&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;/blockquote&amp;gt;
&amp;lt;h2 id=&amp;#34;summary&amp;#34;&amp;gt;Summary
&amp;lt;/h2&amp;gt;&amp;lt;p style=&amp;#34;text-align: justify;&amp;#34;&amp;gt;A Stored Cross-Site Scripting (XSS) vulnerability was identified in the &amp;lt;code&amp;gt;/admin/blocks&amp;lt;/code&amp;gt;  endpoint of the FluentCMS application. This vulnerability allows attackers to inject malicious scripts via &amp;lt;code&amp;gt;Blocks Plugin&amp;lt;/code&amp;gt;. The injected scripts are stored on the server and executed automatically whenever the main page is accessed by users, posing a significant security risk.&amp;lt;/p&amp;gt;
&amp;lt;h2 id=&amp;#34;details&amp;#34;&amp;gt;Details
&amp;lt;/h2&amp;gt;&amp;lt;p&amp;gt;Vulnerable Endpoint: &amp;lt;code&amp;gt;/admin/blocks&amp;lt;/code&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;p&amp;gt;Parameter: &amp;lt;code&amp;gt;Blocks Plugin&amp;lt;/code&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;h2 id=&amp;#34;poc&amp;#34;&amp;gt;PoC
&amp;lt;/h2&amp;gt;&amp;lt;h3 id=&amp;#34;payload&amp;#34;&amp;gt;Payload
&amp;lt;/h3&amp;gt;&amp;lt;div class=&amp;#34;highlight&amp;#34;&amp;gt;&amp;lt;div class=&amp;#34;chroma&amp;#34;&amp;gt;
&amp;lt;table class=&amp;#34;lntable&amp;#34;&amp;gt;&amp;lt;tr&amp;gt;&amp;lt;td class=&amp;#34;lntd&amp;#34;&amp;gt;
&amp;lt;pre tabindex=&amp;#34;0&amp;#34; class=&amp;#34;chroma&amp;#34;&amp;gt;&amp;lt;code&amp;gt;&amp;lt;span class=&amp;#34;lnt&amp;#34;&amp;gt;1
&amp;lt;/span&amp;gt;&amp;lt;/code&amp;gt;&amp;lt;/pre&amp;gt;&amp;lt;/td&amp;gt;
&amp;lt;td class=&amp;#34;lntd&amp;#34;&amp;gt;
&amp;lt;pre tabindex=&amp;#34;0&amp;#34; class=&amp;#34;chroma&amp;#34;&amp;gt;&amp;lt;code class=&amp;#34;language-html&amp;#34; data-lang=&amp;#34;html&amp;#34;&amp;gt;&amp;lt;span class=&amp;#34;line&amp;#34;&amp;gt;&amp;lt;span class=&amp;#34;cl&amp;#34;&amp;gt;&amp;amp;#34;&amp;amp;gt;&amp;lt;span class=&amp;#34;p&amp;#34;&amp;gt;&amp;amp;lt;&amp;lt;/span&amp;gt;&amp;lt;span class=&amp;#34;nt&amp;#34;&amp;gt;img&amp;lt;/span&amp;gt; &amp;lt;span class=&amp;#34;na&amp;#34;&amp;gt;src&amp;lt;/span&amp;gt;&amp;lt;span class=&amp;#34;o&amp;#34;&amp;gt;=&amp;lt;/span&amp;gt;&amp;lt;span class=&amp;#34;s&amp;#34;&amp;gt;x&amp;lt;/span&amp;gt; &amp;lt;span class=&amp;#34;na&amp;#34;&amp;gt;onerror&amp;lt;/span&amp;gt;&amp;lt;span class=&amp;#34;o&amp;#34;&amp;gt;=&amp;lt;/span&amp;gt;&amp;lt;span class=&amp;#34;s&amp;#34;&amp;gt;alert(&amp;amp;#39;CVE-Hunters&amp;amp;#39;)&amp;lt;/span&amp;gt;&amp;lt;span class=&amp;#34;p&amp;#34;&amp;gt;&amp;amp;gt;&amp;lt;/span&amp;gt;
&amp;lt;/span&amp;gt;&amp;lt;/span&amp;gt;&amp;lt;/code&amp;gt;&amp;lt;/pre&amp;gt;&amp;lt;/td&amp;gt;&amp;lt;/tr&amp;gt;&amp;lt;/table&amp;gt;
&amp;lt;/div&amp;gt;
&amp;lt;/div&amp;gt;&amp;lt;h3 id=&amp;#34;steps-to-reproduce&amp;#34;&amp;gt;Steps to Reproduce:
&amp;lt;/h3&amp;gt;&amp;lt;p style=&amp;#34;text-align: justify;&amp;#34;&amp;gt;Access vulnerable endpoint and click on &amp;lt;code&amp;gt;&amp;#34;Add Block&amp;#34;&amp;lt;/code&amp;gt; to setup a new entry. Insert the payload in &amp;lt;code&amp;gt;&amp;#34;Content&amp;#34;&amp;lt;/code&amp;gt; field, type anything in another fields and click on &amp;lt;code&amp;gt;&amp;#34;Submit&amp;#34;&amp;lt;/code&amp;gt;. Access the preview pages by &amp;lt;code&amp;gt;&amp;#34;/?pagePreview=1&amp;#34;&amp;lt;/code&amp;gt;, drag and drop the Block Plugin in any place at the page and select the Block that was set up before. Access the Main Page and the script will execute automatically:&amp;lt;/p&amp;gt;
&amp;lt;p&amp;gt;&amp;lt;img src=&amp;#34;/p/cve-2026-11434/image.png&amp;#34;
	width=&amp;#34;470&amp;#34;
	height=&amp;#34;582&amp;#34;
	srcset=&amp;#34;/p/cve-2026-11434/image_hu_82c19b5aef121713.png 480w, /p/cve-2026-11434/image_hu_36e0d5133d913b63.png 1024w&amp;#34;
	loading=&amp;#34;lazy&amp;#34;
	
	
		class=&amp;#34;gallery-image&amp;#34; 
		data-flex-grow=&amp;#34;80&amp;#34;
		data-flex-basis=&amp;#34;193px&amp;#34;
	
 /&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;p&amp;gt;&amp;lt;img src=&amp;#34;/p/cve-2026-11434/image-1.png&amp;#34;
	width=&amp;#34;678&amp;#34;
	height=&amp;#34;533&amp;#34;
	srcset=&amp;#34;/p/cve-2026-11434/image-1_hu_71e2fb11fbe773fc.png 480w, /p/cve-2026-11434/image-1_hu_b9c46901039d81ea.png 1024w&amp;#34;
	loading=&amp;#34;lazy&amp;#34;
	
	
		class=&amp;#34;gallery-image&amp;#34; 
		data-flex-grow=&amp;#34;127&amp;#34;
		data-flex-basis=&amp;#34;305px&amp;#34;
	
 /&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;p&amp;gt;&amp;lt;img src=&amp;#34;/p/cve-2026-11434/image-2.png&amp;#34;
	width=&amp;#34;702&amp;#34;
	height=&amp;#34;278&amp;#34;
	srcset=&amp;#34;/p/cve-2026-11434/image-2_hu_673183fa472bd83c.png 480w, /p/cve-2026-11434/image-2_hu_5dce9ba0cd105845.png 1024w&amp;#34;
	loading=&amp;#34;lazy&amp;#34;
	
	
		class=&amp;#34;gallery-image&amp;#34; 
		data-flex-grow=&amp;#34;252&amp;#34;
		data-flex-basis=&amp;#34;606px&amp;#34;
	
 /&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;h2 id=&amp;#34;impact&amp;#34;&amp;gt;Impact
&amp;lt;/h2&amp;gt;&amp;lt;p style=&amp;#34;text-align: justify;&amp;#34;&amp;gt;
  &amp;lt;ul&amp;gt;
    &amp;lt;li&amp;gt;Session hijacking: Stealing cookies or authentication tokens to impersonate users.&amp;lt;/li&amp;gt;
    &amp;lt;li&amp;gt;Credential theft: Harvesting usernames and passwords using malicious scripts.&amp;lt;/li&amp;gt;
    &amp;lt;li&amp;gt;Malware delivery: Distributing unwanted or harmful code to victims.&amp;lt;/li&amp;gt;
    &amp;lt;li&amp;gt;Privilege escalation: Compromising administrative users through persistent scripts.&amp;lt;/li&amp;gt;
    &amp;lt;li&amp;gt;Data manipulation or defacement: Changing or disrupting site content.&amp;lt;/li&amp;gt;
    &amp;lt;li&amp;gt;Reputation damage: Eroding trust among site users and administrators.&amp;lt;/li&amp;gt;
  &amp;lt;/ul&amp;gt;
&amp;lt;/p&amp;gt;
&amp;lt;h2 id=&amp;#34;reference&amp;#34;&amp;gt;Reference
&amp;lt;/h2&amp;gt;&amp;lt;p&amp;gt;&amp;lt;em&amp;gt;&amp;lt;strong&amp;gt;&amp;lt;a class=&amp;#34;link&amp;#34; href=&amp;#34;https://github.com/KarinaGante/KG-Sec/blob/main/CVEs/FluentCMS/CVE-2026-11434.md&amp;#34;  target=&amp;#34;_blank&amp;#34; rel=&amp;#34;noopener&amp;#34;
    &amp;gt;https://github.com/KarinaGante/KG-Sec/blob/main/CVEs/FluentCMS/CVE-2026-11434.md&amp;lt;/a&amp;gt;&amp;lt;/strong&amp;gt;&amp;lt;/em&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;h2 id=&amp;#34;finder&amp;#34;&amp;gt;Finder
&amp;lt;/h2&amp;gt;&amp;lt;p&amp;gt;&amp;lt;a class=&amp;#34;link&amp;#34; href=&amp;#34;https://www.linkedin.com/in/karina-gante/&amp;#34;  target=&amp;#34;_blank&amp;#34; rel=&amp;#34;noopener&amp;#34;
    &amp;gt;&amp;lt;img src=&amp;#34;/assets/contributors/50x50/karina50x50.png&amp;#34;
	
	
	
	loading=&amp;#34;lazy&amp;#34;
	
	
 /&amp;gt;&amp;lt;/a&amp;gt; &amp;lt;a class=&amp;#34;link&amp;#34; href=&amp;#34;https://www.linkedin.com/in/karina-gante/&amp;#34;  target=&amp;#34;_blank&amp;#34; rel=&amp;#34;noopener&amp;#34;
    &amp;gt;Karina Gante&amp;lt;/a&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;blockquote&amp;gt;
&amp;lt;p&amp;gt;&amp;lt;em&amp;gt;&amp;lt;strong&amp;gt;By: &amp;lt;a class=&amp;#34;link&amp;#34; href=&amp;#34;https://github.com/CVE-Hunters/cve-hunters&amp;#34;  target=&amp;#34;_blank&amp;#34; rel=&amp;#34;noopener&amp;#34;
    &amp;gt;CVE-Hunters&amp;lt;/a&amp;gt;&amp;lt;/strong&amp;gt;&amp;lt;/em&amp;gt;&amp;lt;/p&amp;gt;
&amp;lt;/blockquote&amp;gt;
</content:encoded>

      <pubDate>Sat, 06 Jun 2026 00:00:00 &#43;0000</pubDate>
    </item>
  </channel>
</rss>
