Beghelli Sicuroweb (Sicuro24)
3 CVEs affecting Beghelli Sicuroweb (Sicuro24). Latest disclosed: 2026-04-22. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-41468 | High | 8.7 | 2026-04-22 | Beghelli Sicuro24 SicuroWeb embeds AngularJS 1.5.2, an end-of-life component containing known sandbox escape primitives. When combined with template injection… |
CVE-2026-41469 | Medium | 5.2 | 2026-04-22 | Beghelli Sicuro24 SicuroWeb does not enforce a Content Security Policy, allowing unrestricted loading of external JavaScript resources from attacker-controlled… |
CVE-2026-22191 | Medium | 5.2 | 2026-03-13 | Beghelli Sicuro24 SicuroWeb contains a template injection vulnerability that allows attackers to inject arbitrary AngularJS expressions by exploiting improper… |