CVE-2026-29933 - Vulnerability Details

- YZMCMS v7.4 Reflected XSS via Modified Referrer Header

Description

A reflected cross-site scripting (XSS) vulnerability in the /index/login.html component of YZMCMS v7.4 allows attackers to execute arbitrary Javascript in the context of the user's browser via modifying the referrer value in the request header.

Published: 2026-03-26

Score: 6.1 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A reflected cross‑site scripting vulnerability exists in the /index/login.html page of YZMCMS. By altering the Referrer header in a request to that page, an attacker can inject and execute arbitrary JavaScript within the victim’s browser session. This flaw permits client‑side code execution that could lead to data theft, credential compromise, or malicious network requests, classified as CWE‑79.

Affected Systems

The issue affects the YZMCMS content management system, specifically version 7.4. The vulnerable code resides in the login page component, which is publicly accessible to all users with network connectivity to the application.

Risk and Exploitability

The nominal CVSS score is 6.1, indicating moderate severity, while the EPSS score is below 1 %, suggesting a low probability of exploitation in the wild. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires that the attacker supply a manipulated Referrer header to a victim browser requesting the login page, a scenario that is attainable through phishing or malicious link contexts. Therefore, the risk is moderate with a relatively low likelihood of mass exploitation, but given the potential for credential theft or session hijacking, immediate remediation is advised.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

cpe:2.3:a:yzmcms:yzmcms:7.4:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Yzmcms

95%

Version	Status	Scheme	Platform
`7.4`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update or patch YZMCMS to a version that removes the Referrer‑based XSS flaw.
If an update is unavailable, reject or sanitize Referrer headers on the /index/login.html endpoint.
Implement a strict Content Security Policy that blocks inline scripts and restricts script sources.
Monitor web traffic and logs for attempts to inject script via the Referrer header and verify that the CSP is enforced.

Generated by OpenCVE AI on April 1, 2026 at 05:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00036.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://github.com/yzmcms/yzmcms/issues/69

History

Thu, 02 Apr 2026 20:30:00 +0000

Type	Values Removed	Values Added
Title		YZMCMS v7.4 Reflected XSS via Modified Referrer Header

Wed, 01 Apr 2026 02:15:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:yzmcms:yzmcms:7.4:::::::*

Tue, 31 Mar 2026 03:00:00 +0000

Type	Values Removed	Values Added
Title	Reflected XSS via Referrer Header in YZMCMS 7.4

Mon, 30 Mar 2026 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sun, 29 Mar 2026 20:45:00 +0000

Type	Values Removed	Values Added
Title		Reflected XSS via Referrer Header in YZMCMS 7.4
Weaknesses		CWE-79

Fri, 27 Mar 2026 20:30:00 +0000

Type	Values Removed	Values Added
Title	Reflected XSS via Referrer Header in YZMCMS Login Page
Weaknesses	CWE-79

Fri, 27 Mar 2026 09:30:00 +0000

Type	Values Removed	Values Added
Title		Reflected XSS via Referrer Header in YZMCMS Login Page
Weaknesses		CWE-79

Fri, 27 Mar 2026 08:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Yzmcms Yzmcms yzmcms
Vendors & Products		Yzmcms Yzmcms yzmcms

Thu, 26 Mar 2026 15:15:00 +0000

Type	Values Removed	Values Added
Description		A reflected cross-site scripting (XSS) vulnerability in the /index/login.html component of YZMCMS v7.4 allows attackers to execute arbitrary Javascript in the context of the user's browser via modifying the referrer value in the request header.
References		https://github.com/yzmcms/yzmcms/issues/69

Subscriptions

Yzmcms Yzmcms

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2026-03-26T00:00:00.000Z

Updated: 2026-03-30T14:56:34.048Z

Reserved: 2026-03-04T00:00:00.000Z

Link: CVE-2026-29933

Vulnrichment

Updated: 2026-03-30T13:52:00.267Z

NVD

Status : Analyzed

Published: 2026-03-26T15:16:35.890

Modified: 2026-03-31T21:38:24.613

Link: CVE-2026-29933

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-02T07:59:00Z

Weaknesses

CWE-79

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object