Cotonti — Vulnerabilities & Security Advisories 5

All 5 CVE vulnerabilities found in Cotonti, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-55746	Cotonti stored XSS via PFS folder title CWE-79	7.6	High	2026-06-18
CVE-2026-55745	Cotonti CSRF in PFS folder edit allows unauthorized folder modification CWE-352	5.4	Medium	2026-06-18
CVE-2026-55744	Cotonti CSRF in PFS allows forced arbitrary file upload CWE-352	8.1	High	2026-06-18
CVE-2026-55742	Cotonti CSRF in admin.rights.php allows privilege escalation CWE-352	9.6	Critical	2026-06-18
CVE-2026-55741	Cotonti CSRF in admin.config.php allows unauthorized configuration changes CWE-352	8.8	High	2026-06-18

All 5 known CVE vulnerabilities affecting Cotonti with full Chinese analysis, references, and POCs where available.