CVE-2026-7388 — A weakness has been identified in EyouCMS up to 1.7.9.
CVE-2026-7388 — A weakness has been identified in EyouCMS up to 1.7.9. Impacted is the function editFile of the file application/admin/logic/FilemanagerLogic.php of the component Template File Handler. Executing a manipulation can lead to code injection. The attack can be launched remotely. The expl
What This Means For You
- If your environment is affected by CWE-74, CWE-94, review your exposure and prioritize patching based on your environment. Monitor vendor advisories for CVE-2026-7388 updates and patches.
Indicators of Compromise
| ID | Type | Indicator |
|---|---|---|
| CVE-2026-7388 | vulnerability | CVE-2026-7388 |
| CWE-74 | weakness | CWE-74 |
| CWE-94 | weakness | CWE-94 |
Written by SCW Vulnerability Desk
Source & Attribution
| Source Platform | NVD |
| Channel | National Vulnerability Database |
| Published | April 29, 2026 at 19:16 UTC |
This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.
Believe this infringes your rights? Submit a takedown request.
Related coverage
CVE-2026-7389: EyouCMS SQL Injection Vulnerability Exposed
CVE-2026-7389 — A security vulnerability has been detected in EyouCMS up to 1.7.9. The affected element is the function GetSortData of the file application/common.php. The...
CVE-2026-7386: fatbobman mail-mcp-bridge Path Traversal Vulnerability
CVE-2026-7386 — A flaw has been found in fatbobman mail-mcp-bridge up to 1.3.3. Affected is an unknown function of the file src/mail_mcp_server.py. Executing a manipulation...
Pardus OS My Computer Vulnerability Allows OS Command Injection
CVE-2026-6849 — Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus OS...