Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

npm/@haxtheweb/iframe-loader — 1 CVEs · VulnScope

pkg:npm/@haxtheweb/iframe-loader

1 total CVE

✅ Check your installed version

All known vulnerabilities

—CVE-2026-46396Stored XSS via <iframe> in HAX CMS allows access to sensitive client-side data and account takeover
from 0, < 26.0.0