Umbraco.Cms: XSS/HTML Injection in Umbraco Backoffice confirmation dialog_CVE-2026-46609

4.6 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Description

Umbraco is an ASP.NET CMS. From version 14.0.0 to before version 17.4.0, authenticated users are able to inject HTML into an input field, which is rendered in the confirmation dialog without proper output encoding. This issue has been patched in version 17.4.0.

Basic Information

ID CVE-2026-46609

Source GitHub_M

Published Jun 10, 2026 at 15:59

Affected Product

Vendor umbraco

Product Umbraco-CMS

Version >= 14.0.0, < 17.4.0

Affected Versions umbraco Umbraco-CMS >= 14.0.0, < 17.4.0

CWE Classification

CWE-79

References

github.com /umbraco/Umbraco-CMS/security/advisories/GHSA-vr9v-27gg-qgx4

{
    "lastseen": "",
    "description": "Umbraco is an ASP.NET CMS. From version 14.0.0 to before version 17.4.0, authenticated users are able to inject HTML into an input field, which is rendered in the confirmation dialog without proper output encoding. This issue has been patched in version 17.4.0.",
    "published": "2026-06-10T15:59:03.416Z",
    "modified": "2026-06-10T15:59:03.416Z",
    "type": "cve",
    "title": "Umbraco.Cms: XSS/HTML Injection in Umbraco Backoffice confirmation dialog",
    "source": "GitHub_M",
    "references": "https://github.com/umbraco/Umbraco-CMS/security/advisories/GHSA-vr9v-27gg-qgx4",
    "id": "CVE-2026-46609",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "umbraco Umbraco-CMS >= 14.0.0, < 17.4.0",
    "sourceHref": "",
    "cvss": {
        "score": 4.6,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Umbraco-CMS",
    "version": ">= 14.0.0, < 17.4.0",
    "vendor": "umbraco",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}