CVE-2026-29192 | Zitadel up to 4.11.x Login V2 Interface cross site scripting (GHSA-6rx5-m2rc-hmf7)

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability, which was classified as problematic, was found in Zitadel up to 4.11.x. This impacts an unknown function of the component Login V2 Interface. Executing a manipulation can lead to cross site scripting.

This vulnerability is handled as CVE-2026-29192. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-29192 | Zitadel up to 4.11.x Login V2 Interface cross site scripting (GHSA-6rx5-m2rc-hmf7)

Post correlati

CVE-2025-9778 | Tenda W12 up to 3.0.0.6(3948) Administrative Interface /etc_ro/shadow hard-coded credentials

CVE-2024-24188 | pcmacdon Jsish 3.5.0 /src/jsiUtils.c heap-based overflow

CVE-2025-37093 | HPE StoreOnce Software up to 4.3.10 improper authentication

CVE-2024-33852 | Centreon Web up to 22.10.22/23.04.18/23.10.12/24.04.2 Downtime sql injection