A vulnerability identified as problematic has been detected in ViewComponent up to 4.11.x. Affected is the function
around_render of the component ViewComponent::Base. Performing a manipulation results in cross site scripting.
This vulnerability was named CVE-2026-54498. The attack may be initiated remotely. There is no available exploit.