CVE-2026-39423 | 1Panel-dev MaxKB up to 2.7.x AI Chat Interface cross site scripting (GHSA-462x-99gf-mp79)

Inserito da Angelo Barbosa | Apr 14, 2026 | CVE

A vulnerability categorized as problematic has been discovered in 1Panel-dev MaxKB up to 2.7.x. This affects an unknown function of the component AI Chat Interface. The manipulation results in cross site scripting.

This vulnerability was named CVE-2026-39423. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2026-39423 | 1Panel-dev MaxKB up to 2.7.x AI Chat Interface cross site scripting (GHSA-462x-99gf-mp79)

Post correlati

CVE-2024-12373 | Rockwell Automation PowerMonitor 1000 Remote buffer overflow (icsa-24-352-03)

CVE-2023-48247 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 HTTP Request authorization

CVE-2024-33692 | Satrya Smart Recent Posts Widget Plugin up to 1.0.3 on WordPress cross site scripting

CVE-2025-11241 | Yoast SEO Premium Plugin 25.7/25.8/25.9 on WordPress cross site scripting