A vulnerability was found in SeaweedFS up to 4.29. It has been rated as problematic. This affects an unknown function of the file weed/server/common.go of the component JSON Endpoint. This manipulation causes cross site scripting.
The identification of this vulnerability is CVE-2026-58371. It is possible to initiate the attack remotely. There is no exploit available.
Upgrading the affected component is advised.