CVE-2026-54386 | marimo-team marimo up to 0.23.8 Link new cross site scripting

Inserito da Angelo Barbosa | Giu 18, 2026 | CVE

A vulnerability labeled as problematic has been found in marimo-team marimo up to 0.23.8. This vulnerability affects the function __new__ of the component Link Handler. The manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-54386. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2026-54386 | marimo-team marimo up to 0.23.8 Link __new__ cross site scripting

Post correlati

CVE-2025-25997 | FeMiner wms 1.0 databak.php path traversal (Issue 22)

CVE-2024-13303 | Drupal Download All Files up to 2.0.1 authorization

CVE-2025-28380 | OpenC3 COSMOS 6.0.0 URL Parameter cross site scripting

CVE-2025-14586 | TOTOLINK X5000R 9.1.0cu.2089_B20211224 cstecgi.cgi?action=exportOvpn&type=user snprintf User os command injection

CVE-2026-54386 | marimo-team marimo up to 0.23.8 Link new cross site scripting