VIR Vulnerability Intelligence Relay

Package impact

npm npm / cryptpad

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-26028 medium 6.1 6.1 10d ago CryptPad has a Sanitizer Bypass in Diffmarked.js that Allows Arbitrary HTML Injection and Potential XSS