CVE-2026-6216 | DbGate up to 7.1.4 SVG Icon String FontIcon.svelte applicationIcon cross site scripting

Inserito da Angelo Barbosa | Apr 13, 2026 | CVE

A vulnerability categorized as problematic has been discovered in DbGate up to 7.1.4. This affects an unknown function of the file packages/web/src/icons/FontIcon.svelte of the component SVG Icon String Handler. Such manipulation of the argument applicationIcon leads to cross site scripting.

This vulnerability is traded as CVE-2026-6216. The attack may be launched remotely. Furthermore, there is an exploit available.

It is advisable to upgrade the affected component.

CVE-2026-6216 | DbGate up to 7.1.4 SVG Icon String FontIcon.svelte applicationIcon cross site scripting

Post correlati

CVE-2024-40478 | Kashipara Online Exam System 1.0 /admin/afeedback.php email cross site scripting

CVE-2024-9008 | SourceCodester Best Online News Portal 1.0 Comment Section /news-details.php name sql injection

CVE-2024-0513 | Royal Elementor Addons and Templates Plugin up to 1.3.87 on WordPress remove_from_wishlist cross-site request forgery

CVE-2024-30310 | Adobe Acrobat Reader up to 20.005.30574/24.002.20736 out-of-bounds write (apsb24-29)