QSearchQSearch

CVE-2026-9646

6.1 MEDIUM

A reflected cross-site scripting issue exists in URL handling

Published: 2026-05-28 · Last updated: 2026-06-01

Severity and scoring

CVSS
6.1 MEDIUM
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CWE
CWE-80

Description

A reflected cross-site scripting issue exists in URL handling.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-46492 md-fileserver allows for local viewing of markdown files in a browser (7.2 HIGH)
  • CVE-2026-34033 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apache Answer (5.4 MEDIUM)
  • CVE-2026-11511 A weakness has been identified in Bolt CMS up to 3.7.5 (3.5 LOW)
  • CVE-2026-44839 RabbitMQ is a messaging and streaming broker (4.8 MEDIUM)
  • CVE-2026-39642 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in SpabRice Nyla allows Code Injection (5.3 MEDIUM)