PatchSiren cyber security CVE debrief
CVE-2026-46399 haxtheweb CVE debrief
CVE-2026-46399 is a critical vulnerability in HAX CMS, a microsite universe management system. The PHP version of HAX CMS prior to version 26.0.0 has an authenticated file overwrite vulnerability. An attacker can exploit this vulnerability to configure malicious Git filter commands and achieve code execution on the HAX CMS server. Version 26.0.0 patches the issue.
- Vendor
- haxtheweb
- Product
- haxcms-nodejs
- CVSS
- CRITICAL 9.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-05
- Original CVE updated
- 2026-06-08
- Advisory published
- 2026-06-05
- Advisory updated
- 2026-06-08
Who should care
Users of HAX CMS, especially those using the PHP version prior to version 26.0.0, should be aware of this vulnerability and take immediate action to patch their systems.
Technical summary
The vulnerability has a CVSS score of 9.4 and is classified as CRITICAL. It allows an attacker to overwrite files on the HAX CMS server, potentially leading to code execution.
Defensive priority
High
Recommended defensive actions
- Upgrade to version 26.0.0 or later of HAX CMS
- Review and restrict file overwrite permissions
- Monitor for suspicious activity on the HAX CMS server
Evidence notes
The vulnerability is confirmed by the CVE record and NVD detail pages. [resourceLinkAnnotations:cve-org,nvd]
Official resources
-
CVE-2026-46399 CVE record
CVE.org
-
CVE-2026-46399 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-46399 was published on 2026-06-05T19:16:33.960Z and modified on 2026-06-08T17:16:50.933Z.