Security Advisory

CVE-2026-24476

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-26 22:26:59

Last updated 2026-01-27 15:20:27

Assigner GitHub_M

State PUBLISHED

Description

Shaarli is a personal bookmarking service. Prior to version 0.16.0, crafting a malicious tag which starting with `"` prematurely ends the `<input>` tag on the start page and allows an attacker to add arbitrary html leading to a possible XSS attack. Version 0.16.0 fixes the issue.

← Browse all CVEs View on cve.org ↗