CVE-2026-23525 | 1Panel-dev 1Panel up to 1.10.33/2.0.16 on Linux MdEditor cross site scripting (GHSA-mg24-6h5c-9q42)

Inserito da Angelo Barbosa | Gen 19, 2026 | CVE

A vulnerability was found in 1Panel-dev 1Panel up to 1.10.33/2.0.16 on Linux. It has been rated as problematic. This affects an unknown part of the component MdEditor. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2026-23525. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2026-23525 | 1Panel-dev 1Panel up to 1.10.33/2.0.16 on Linux MdEditor cross site scripting (GHSA-mg24-6h5c-9q42)

Post correlati

CVE-2015-8865 | PHP up to 5.5.33/5.6.19/5.22/7.0.4 Continuation-Level Jump funcs.c file_check_mem buffer overflow (Bug 71527)

CVE-2025-64198 | Easy Social Share Buttons Plugin up to 10.7.0 on WordPress cross site scripting

CVE-2024-2098 | Download Manager Plugin up to 3.2.89 on WordPress protectMediaLibrary improper authorization

CVE-2024-10674 | Th Shop Mania Plugin up to 1.4.9 on WordPress Plugin Installation access control