CVE-2026-35466

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score

6.1 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N                                    

XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services

Published Date

April 02, 2026

Last Modified

April 03, 2026

CWE ID

CWE-79

Source

NVD

Vendor

CERT/CC

Product

cveClient/cveInterface.js