CVE-2026-54298 | withastro up to 6.4.5 spreadAttributes cross site scripting

Inserito da Angelo Barbosa | Giu 22, 2026 | CVE

A vulnerability was found in withastro astro up to 6.4.5. It has been classified as problematic. This issue affects the function spreadAttributes. Performing a manipulation results in cross site scripting.

This vulnerability was named CVE-2026-54298. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2026-54298 | withastro up to 6.4.5 spreadAttributes cross site scripting

Post correlati

CVE-2024-42013 | Grau Data Blocky up to 3.0 GUI Privilege Escalation

CVE-2025-5220 | FreeFloat FTP Server 1.0.0 GET Command buffer overflow

CVE-2024-12111 | OpenText Privileged Access Manager 23.3/24.3 Authentication Process command injection

CVE-2025-21572 | Oracle OpenGrok 1.13.25 History View Page cross site scripting