CVE-2026-29840

Stored XSS in JiZhiCMS Release Function Allows Authenticated Script Injection

Description

JiZhiCMS v2.5.6 and before contains a Stored Cross-Site Scripting (XSS) vulnerability in the release function within app/home/c/UserController.php. The application attempts to sanitize input by filtering <script> tags but fails to recursively remove dangerous event handlers in other HTML tags (such as onerror in <img> tags). This allows an authenticated remote attacker to inject arbitrary web script or HTML via the body parameter in a POST request to /user/release.html.

INFO

Published Date :

2026-03-24T00:00:00.000Z

Last Modified :

2026-03-24T18:48:50.916Z

Source :

mitre

AFFECTED PRODUCTS

The following products are affected by CVE-2026-29840 vulnerability.

Vendors	Products
Jizhicms	Jizhicms

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-29840.

URL	Resource
http://www.demo.com/user/release/molds/article.html
https://gist.github.com/w-p-man/790f51f918499798180a8def3a6fdfb0

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact