CVE-2026-46399EPSS p20.5%

CVE-2026-46399CVE-2026-46399

Description

HAX CMS helps manage microsite universe with PHP or NodeJs backends. The PHP version of HAX CMS prior to version 26.0.0 has an authenticated file overwrite vulnerability. An attacker can exploit this vulnerability to configure malicious Git filter commands and achieve code execution on the HAX CMS server. Version 26.0.0 patches the issue.

Scoring

EPSS0.29% probability of exploitation · percentile 20.5% · 2026-06-18T12:00:27Z
Last modified2026-06-08

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-46394
CVE
CVE-2026-46393
CVE
CVE-2026-46390
CVE
CVE-2026-46397
CVE
CVE-2026-46357
CVE
CVE-2026-46391
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.