CVE-2026-44016 | docling-project docling up to 2.90.x HTML Backend code injection

Inserito da Angelo Barbosa | Giu 24, 2026 | CVE

A vulnerability, which was classified as critical, has been found in docling-project docling up to 2.90.x. The impacted element is an unknown function of the component HTML Backend. The manipulation leads to code injection.

This vulnerability is referenced as CVE-2026-44016. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-44016 | docling-project docling up to 2.90.x HTML Backend code injection

Post correlati

CVE-2025-11306 | qianfox FoxCMS up to 1.2 Search Page /index.php/Search keyword cross site scripting

CVE-2023-40414 | Apple macOS WebKit Privilege Escalation

CVE-2024-9492 | Silabs Flash Programming Utility up to 4.80 uncontrolled search path

CVE-2024-47125 | goTenna Pro Series up to 1.6.1 Message communication channel to intended endpoints (icsa-24-270-04)