NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-2404

Summary	CWE-116 Improper Encoding or Escaping of Output vulnerability exists that could cause log injection and forged log when an attacker alters the POST /j_security check request payload.
Publication Date	April 15, 2026, 1:16 a.m.
Registration Date	April 15, 2026, 11:40 a.m.
Last Update	April 18, 2026, 12:11 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-104-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-104-01.pdf	cybersecurity@se.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-116	不適切なエンコード、または出力のエスケープ	https://cwe.mitre.org/data/definitions/116.html