CVE-2026-41240 | cure53 DOMPurify up to 3.3.x permissive list of allowed inputs

Inserito da Angelo Barbosa | Apr 23, 2026 | CVE

A vulnerability labeled as problematic has been found in cure53 DOMPurify up to 3.3.x. This affects an unknown part. Executing a manipulation can lead to permissive list of allowed inputs.

This vulnerability is tracked as CVE-2026-41240. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-41240 | cure53 DOMPurify up to 3.3.x permissive list of allowed inputs

Post correlati

CVE-2024-53779 | Max Engel Yahoo WebPlayer Plugin up to 2.0.6 on WordPress cross-site request forgery

CVE-2025-24700 | Xylus Themes WP Event Aggregator Plugin up to 1.8.2 on WordPress cross site scripting

CVE-2023-49118 | OpenHarmony up to 3.2.4/4.0.0 out-of-bounds

CVE-2024-40641 | projectdiscovery nuclei up to 3.3.0 os command injection