LOW
teableio
CVE published 2026-05-26
CVE-2026-9566
A cross-site scripting (XSS) vulnerability exists in Teable's login redirect functionality. The issue stems from insufficient validation of the `redirect` parameter in the login page component, allowing manipulation that could lead to XSS. The vulnerability is remotely exploitable and has publicly available exploit information. The vendor has confirmed remediation through input validation using `isValidRe [truncated]