CVE-2026-24399 | chattermate chat up to 1.0.8 LocalStorage cross site scripting

Inserito da Angelo Barbosa | Gen 24, 2026 | CVE

A vulnerability labeled as problematic has been found in chattermate chat up to 1.0.8. Affected by this issue is some unknown functionality of the component LocalStorage Handler. Executing a manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-24399. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-24399 | chattermate chat up to 1.0.8 LocalStorage cross site scripting

Post correlati

CVE-2025-58364 | OpenPrinting CUPS up to 2.4.12 denial of service

CVE-2024-51994 | Combodo iTop up to 3.1.x Text File Upload cross site scripting (GHSA-jjph-c25g-5c7g)

CVE-2025-7450 | letseeqiji gorobbs up to 1.0.8 API user.go ResetUserAvatar filename path traversal (Issue 18)

CVE-2025-55299 | 7ritn VaulTLS up to 0.9.0 weak password (GHSA-pjfr-pj3h-cw8m)