HIGH
umputun
CVE published 2026-06-17
CVE-2026-48788
A high-severity Cross-Site Scripting (XSS) vulnerability, CVE-2026-48788, has been discovered in Remark42, a self-hosted comment engine for blogs and articles. The vulnerability, with a CVSS score of 8.2, affects versions 1.6.0 through 1.15.0. An attacker can exploit this vulnerability through content-type spoofing, allowing them to host a malicious URL that, when accessed, can render attacker-controlled [truncated]