CVE-2026-23926 - Stored XSS vulnerability in Host navigator widget maintenance tooltip
CVE ID :CVE-2026-23926 Published : May 6, 2026, 6:58 a.m. | 1 hour, 29 minutes ago Description :An authenticated (non-super) administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] North Korean hackers targeted ethnic Koreans in China with Android ‘BirdCall’ malware
- [CYBER] KuCoin pone en marcha el Mes de Concientización sobre el Phishing para reforzar la protección de los usuarios en el marco de las iniciativas globales de concientización en seguridad
- [CYBER] CVE-2026-6860 - Apache TLS Server Name Spoofing Vulnerability
- [CYBER] Root-level RCE vulnerability in Palo Alto firewalls exploited (CVE-2026-0300)
- [CYBER] Salesforce Marketing Cloud Vulnerability Exposes Email Data Risk
- [CYBER] CVE-2026-1719 - Gravity Bookings <= 2.5.9 - Unauthenticated SQL Injection via 'category_id' Parameter