CVE-2026-35054 Blast Radius

MEDIUM • CVSS 6.4XenForo before 2.3.9 is vulnerable to stored cross-site scripting (XSS) related to BB code rendering. An attacker can inject malicious scripts through

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-35054.

Start Free Scan →← Back to CVE-2026-35054