CVE-2026-30691 – Cyntler React Doc Viewer XSS

CVE ID :CVE-2026-30691

Published : May 20, 2026, 6:16 p.m. | 41 minutes ago

Description :Cross-Site Scripting (XSS) vulnerability in @cyntler/react-doc-viewer v1.17.1 allows remote attackers to execute arbitrary JavaScript via a crafted .txt file. The TXTRenderer component fails to sanitize file content and explicitly casts raw data as a ReactNode

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-20240 – Denial of Service through coldToFrozen.sh Script in Splunk Enterprise

CVE-2026-20239 – Sensitive Information Disclosure through Log Files in Splunk Enterprise

CVE-2026-20238 – Improper Access Control through Role Inheritance in Splunk AI Toolkit app

CVE-2026-9101 – Prototype pollution in csv parsing