CVE-2026-40470 | hackage-server/hackage.haskell.org up to 0.5 cross site scripting (HSEC-2024-0004)

Inserito da Angelo Barbosa | Apr 23, 2026 | CVE

A vulnerability identified as problematic has been detected in hackage-server and hackage.haskell.org up to 0.5. Affected by this issue is some unknown functionality. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2026-40470. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-40470 | hackage-server/hackage.haskell.org up to 0.5 cross site scripting (HSEC-2024-0004)

Post correlati

CVE-2023-49172 | BrainCert Plugin up to 1.30 on WordPress cross site scripting

CVE-2024-34543 | Intel RAID Web Console See references access control (intel-sa-00926)

CVE-2025-0070 | SAP NetWeaver Application Server for ABAP and ABAP Platform improper authentication

CVE-2024-45310 | opencontainers runc up to 1.1.13/1.2.0-rc2 os.MkdirAll race condition