Vulnerability Details CVE-2026-7195
CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x through 14.3.x, 14.4.x before 14.4.8152, 15.0.x before 15.0.8234, 15.1.x before 15.1.8335, 15.2.x before 15.2.8441, 15.3.x before 15.3.8531, and 15.4.x before 15.4.8630 allows a remote unauthenticated attacker to compromise the integrity and confidentiality of user accounts. Successful exploitation requires user interaction and a non-default site configuration.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.0%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2026-7195
-
cpe:2.3:a:progress:sitefinity:14.1.7800
-
cpe:2.3:a:progress:sitefinity:14.1.7821
-
cpe:2.3:a:progress:sitefinity:14.1.7822
-
cpe:2.3:a:progress:sitefinity:14.1.7823
-
cpe:2.3:a:progress:sitefinity:14.1.7824
-
cpe:2.3:a:progress:sitefinity:14.1.7825
-
cpe:2.3:a:progress:sitefinity:14.1.7826
-
cpe:2.3:a:progress:sitefinity:14.1.7827
-
cpe:2.3:a:progress:sitefinity:14.1.7828
-
cpe:2.3:a:progress:sitefinity:14.2
-
cpe:2.3:a:progress:sitefinity:14.2.7900
-
cpe:2.3:a:progress:sitefinity:14.2.7921
-
cpe:2.3:a:progress:sitefinity:14.2.7922
-
cpe:2.3:a:progress:sitefinity:14.2.7923
-
cpe:2.3:a:progress:sitefinity:14.2.7924
-
cpe:2.3:a:progress:sitefinity:14.2.7925
-
cpe:2.3:a:progress:sitefinity:14.2.7926
-
cpe:2.3:a:progress:sitefinity:14.2.7927
-
cpe:2.3:a:progress:sitefinity:14.2.7928
-
cpe:2.3:a:progress:sitefinity:14.2.7930
-
cpe:2.3:a:progress:sitefinity:14.2.7931
-
cpe:2.3:a:progress:sitefinity:14.2.7932
-
cpe:2.3:a:progress:sitefinity:14.3
-
cpe:2.3:a:progress:sitefinity:14.3.8000
-
cpe:2.3:a:progress:sitefinity:14.3.8021
-
cpe:2.3:a:progress:sitefinity:14.3.8022
-
cpe:2.3:a:progress:sitefinity:14.3.8023
-
cpe:2.3:a:progress:sitefinity:14.3.8024
-
cpe:2.3:a:progress:sitefinity:14.3.8025
-
cpe:2.3:a:progress:sitefinity:14.3.8026
-
cpe:2.3:a:progress:sitefinity:14.3.8027
-
cpe:2.3:a:progress:sitefinity:14.3.8028
-
cpe:2.3:a:progress:sitefinity:14.3.8029
-
cpe:2.3:a:progress:sitefinity:14.4
-
cpe:2.3:a:progress:sitefinity:14.4.8100
-
cpe:2.3:a:progress:sitefinity:14.4.8121
-
cpe:2.3:a:progress:sitefinity:14.4.8122
-
cpe:2.3:a:progress:sitefinity:14.4.8123
-
cpe:2.3:a:progress:sitefinity:14.4.8124
-
cpe:2.3:a:progress:sitefinity:14.4.8125
-
cpe:2.3:a:progress:sitefinity:14.4.8126
-
cpe:2.3:a:progress:sitefinity:14.4.8127
-
cpe:2.3:a:progress:sitefinity:14.4.8128
-
cpe:2.3:a:progress:sitefinity:14.4.8129
-
cpe:2.3:a:progress:sitefinity:14.4.8130
-
cpe:2.3:a:progress:sitefinity:14.4.8131
-
cpe:2.3:a:progress:sitefinity:14.4.8132
-
cpe:2.3:a:progress:sitefinity:14.4.8133
-
cpe:2.3:a:progress:sitefinity:14.4.8134
-
cpe:2.3:a:progress:sitefinity:14.4.8135
-
cpe:2.3:a:progress:sitefinity:14.4.8136
-
cpe:2.3:a:progress:sitefinity:14.4.8137
-
cpe:2.3:a:progress:sitefinity:14.4.8138
-
cpe:2.3:a:progress:sitefinity:14.4.8139
-
cpe:2.3:a:progress:sitefinity:14.4.8140
-
cpe:2.3:a:progress:sitefinity:14.4.8141
-
cpe:2.3:a:progress:sitefinity:14.4.8142
-
cpe:2.3:a:progress:sitefinity:14.4.8143
-
cpe:2.3:a:progress:sitefinity:14.4.8144
-
cpe:2.3:a:progress:sitefinity:14.4.8145
-
cpe:2.3:a:progress:sitefinity:14.4.8146
-
cpe:2.3:a:progress:sitefinity:14.4.8147
-
cpe:2.3:a:progress:sitefinity:14.4.8148
-
cpe:2.3:a:progress:sitefinity:14.4.8149
-
cpe:2.3:a:progress:sitefinity:14.4.8150
-
cpe:2.3:a:progress:sitefinity:14.4.8151
-
cpe:2.3:a:progress:sitefinity:15.0.8200
-
cpe:2.3:a:progress:sitefinity:15.0.8221
-
cpe:2.3:a:progress:sitefinity:15.0.8222
-
cpe:2.3:a:progress:sitefinity:15.0.8223
-
cpe:2.3:a:progress:sitefinity:15.0.8224
-
cpe:2.3:a:progress:sitefinity:15.0.8225
-
cpe:2.3:a:progress:sitefinity:15.0.8226
-
cpe:2.3:a:progress:sitefinity:15.0.8227
-
cpe:2.3:a:progress:sitefinity:15.0.8228
-
cpe:2.3:a:progress:sitefinity:15.0.8229
-
cpe:2.3:a:progress:sitefinity:15.0.8230
-
cpe:2.3:a:progress:sitefinity:15.0.8231
-
cpe:2.3:a:progress:sitefinity:15.0.8232
-
cpe:2.3:a:progress:sitefinity:15.0.8233
-
cpe:2.3:a:progress:sitefinity:15.1.8300
-
cpe:2.3:a:progress:sitefinity:15.1.8321
-
cpe:2.3:a:progress:sitefinity:15.1.8322
-
cpe:2.3:a:progress:sitefinity:15.1.8323
-
cpe:2.3:a:progress:sitefinity:15.1.8324
-
cpe:2.3:a:progress:sitefinity:15.1.8325
-
cpe:2.3:a:progress:sitefinity:15.1.8326
-
cpe:2.3:a:progress:sitefinity:15.1.8327
-
cpe:2.3:a:progress:sitefinity:15.1.8328
-
cpe:2.3:a:progress:sitefinity:15.1.8329
-
cpe:2.3:a:progress:sitefinity:15.1.8330
-
cpe:2.3:a:progress:sitefinity:15.1.8331
-
cpe:2.3:a:progress:sitefinity:15.1.8332
-
cpe:2.3:a:progress:sitefinity:15.1.8333
-
cpe:2.3:a:progress:sitefinity:15.1.8334
-
cpe:2.3:a:progress:sitefinity:15.2.8400
-
cpe:2.3:a:progress:sitefinity:15.2.8421
-
cpe:2.3:a:progress:sitefinity:15.2.8422
-
cpe:2.3:a:progress:sitefinity:15.2.8423
-
cpe:2.3:a:progress:sitefinity:15.2.8424
-
cpe:2.3:a:progress:sitefinity:15.2.8425
-
cpe:2.3:a:progress:sitefinity:15.2.8426
-
cpe:2.3:a:progress:sitefinity:15.2.8427
-
cpe:2.3:a:progress:sitefinity:15.2.8428
-
cpe:2.3:a:progress:sitefinity:15.2.8429
-
cpe:2.3:a:progress:sitefinity:15.2.8430
-
cpe:2.3:a:progress:sitefinity:15.2.8431
-
cpe:2.3:a:progress:sitefinity:15.2.8432
-
cpe:2.3:a:progress:sitefinity:15.2.8433
-
cpe:2.3:a:progress:sitefinity:15.2.8434
-
cpe:2.3:a:progress:sitefinity:15.2.8435
-
cpe:2.3:a:progress:sitefinity:15.2.8436
-
cpe:2.3:a:progress:sitefinity:15.2.8437
-
cpe:2.3:a:progress:sitefinity:15.2.8438
-
cpe:2.3:a:progress:sitefinity:15.2.8439
-
cpe:2.3:a:progress:sitefinity:15.2.8440
-
cpe:2.3:a:progress:sitefinity:15.3.8500
-
cpe:2.3:a:progress:sitefinity:15.3.8521
-
cpe:2.3:a:progress:sitefinity:15.3.8522
-
cpe:2.3:a:progress:sitefinity:15.3.8523
-
cpe:2.3:a:progress:sitefinity:15.3.8524
-
cpe:2.3:a:progress:sitefinity:15.3.8525
-
cpe:2.3:a:progress:sitefinity:15.3.8526
-
cpe:2.3:a:progress:sitefinity:15.3.8527
-
cpe:2.3:a:progress:sitefinity:15.3.8528
-
cpe:2.3:a:progress:sitefinity:15.3.8529
-
cpe:2.3:a:progress:sitefinity:15.3.8530
-
cpe:2.3:a:progress:sitefinity:15.4.8600
-
cpe:2.3:a:progress:sitefinity:15.4.8621
-
cpe:2.3:a:progress:sitefinity:15.4.8622
-
cpe:2.3:a:progress:sitefinity:15.4.8623
-
cpe:2.3:a:progress:sitefinity:15.4.8624
-
cpe:2.3:a:progress:sitefinity:15.4.8625
-
cpe:2.3:a:progress:sitefinity:15.4.8626
-
cpe:2.3:a:progress:sitefinity:15.4.8627
-
cpe:2.3:a:progress:sitefinity:15.4.8628
-
cpe:2.3:a:progress:sitefinity:15.4.8629