CVE-2026-35451 | twentyhq twenty up to 1.20.5 FileBlock cross site scripting (GHSA-7w89-7q26-gj7q)

Inserito da Angelo Barbosa | Apr 21, 2026 | CVE

A vulnerability described as problematic has been identified in twentyhq twenty up to 1.20.5. Affected by this issue is some unknown functionality of the component FileBlock. The manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-35451. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-35451 | twentyhq twenty up to 1.20.5 FileBlock cross site scripting (GHSA-7w89-7q26-gj7q)

Post correlati

CVE-2025-11974 | GitLab Community Edition/Enterprise Edition up to 18.3.4/18.4.2/18.5.0 API Endpoint allocation of resources (Patch 571761)

CVE-2025-4133 | Blog2Social Plugin up to 8.3.x on WordPress cross site scripting

CVE-2023-6871 | Mozilla Firefox up to 120 Protocol denial of service

CVE-2024-57897 | Linux Kernel up to 5.15.175/6.1.123/6.6.69/6.12.8 buffer overflow