CVE-2026-23525 | 1Panel-dev 1Panel up to 1.10.33/2.0.16 on Linux MdEditor cross site scripting (GHSA-mg24-6h5c-9q42)

Inserito da Angelo Barbosa | Gen 19, 2026 | CVE

A vulnerability was found in 1Panel-dev 1Panel up to 1.10.33/2.0.16 on Linux. It has been rated as problematic. This affects an unknown part of the component MdEditor. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2026-23525. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2026-23525 | 1Panel-dev 1Panel up to 1.10.33/2.0.16 on Linux MdEditor cross site scripting (GHSA-mg24-6h5c-9q42)

Post correlati

CVE-2023-51989 | D-Link DIR-822 1.0.2 HNAP1 Interface hard-coded password

CVE-2025-9053 | projectworlds Travel Management System 1.0 /updatesubcategory.php t1/s1 sql injection

CVE-2025-4314 | SourceCodester Advanced Web Store 1.0 /admin/index.php txtLogin sql injection

CVE-2025-1808 | Pixsoft E-Saphira 1.7.24 Login Endpoint servlet?act=login&tipo=1 txtUsuario sql injection