Skip to main content

Docmost EUVD-2026-22752

| CVE-2026-33193 MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2026-04-14 security-advisories@github.com
XSS Docmost
4.6
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
4.6 MEDIUM
AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

6
Patch released
Apr 23, 2026 - 14:17 nvd
Patch available
Patch available
Apr 16, 2026 - 05:29 EUVD
0.70.0
Analysis Generated
Apr 14, 2026 - 22:43 vuln.today
EUVD ID Assigned
Apr 14, 2026 - 22:22 euvd
EUVD-2026-22752
Analysis Generated
Apr 14, 2026 - 22:22 vuln.today
CVE Published
Apr 14, 2026 - 22:16 nvd
MEDIUM 4.6

DescriptionGitHub Advisory

Docmost is open-source collaborative wiki and documentation software. Versions prior to 0.70.0 are vulnerable to a stored cross-site scripting (XSS) attack due to improper handling of MIME type spoofing (GHSL-2026-052). An attacker could exploit this flaw to inject malicious scripts, potentially compromising the security of users and data. Version 0.70.0 contains a patch.

AnalysisAI

Stored cross-site scripting (XSS) in Docmost prior to version 0.70.0 allows authenticated attackers to inject malicious scripts through MIME type spoofing, potentially compromising user sessions and data integrity. The vulnerability requires user interaction (clicking a link or viewing injected content) and affects only the confidentiality and integrity of affected users' data, not availability. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon
Authenticate to Docmost
Delivery
Upload file with spoofed MIME type
Exploit
Inject malicious script into file content
Install
Store malicious content in database
C2
Victim views affected document
Execute
Script executes in victim's browser
Impact
Compromise victim's session or data
Sign in to reveal

Vulnerability AssessmentAI

Risk Assessment CVSS 4.6 (Medium severity) reflects a bounded real-world impact: the attack requires prior authentication (PR:L) and user interaction (UI:R), limiting the attacker pool to legitimate account holders and constraining the attack surface to social engineering or direct manipulation of viewed documents. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An authenticated attacker (or compromised account holder) uploads a file while spoofing its MIME type-for example, naming a text file containing JavaScript as image/png-to bypass server-side file type validation. The malicious content is stored in the wiki. …
Remediation Upgrade Docmost to version 0.70.0 or later immediately. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-22752 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy