CVE-2026-28761
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-28761
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross-site request forgery vulnerability exists in Musetheque V4 Information Disclosure for IPKNOWLEDGE V4L1 rev2203.0 and earlier. If a user views a malicious page while logged-in to the affected product, unexpected operations may be done.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨站请求伪造(CSRF)
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Fujitsu Japan Limited | Musetheque V4 Information Disclosure for IPKNOWLEDGE | V4L1 rev2203.0 and earlier | - |
II. Public POCs for CVE-2026-28761
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-28761
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same weakness: CWE-352
- CVE-2026-45773
Turborepo: Login callback CSRF/session fixation - CVE-2026-8425
Notify Odoo <= 1.0.1 - Cross-Site Request Forgery to Setting - CVE-2026-5365
LatePoint <= 5.3.2 - Cross-Site Request Forgery via 'custome - CVE-2026-4527
Cross-Site Request Forgery (CSRF) in GitLab - CVE-2026-44364
misp-modules website - Missing CSRF protection in the websit
V. Comments for CVE-2026-28761
No comments yet