Is there a public PoC exploit available for EUVD-2026-23436?

Yes, a public proof-of-concept exploit is available for EUVD-2026-23436. Prioritise patching immediately. EPSS: 0.0%.

Is there a patch available for EUVD-2026-23436?

Yes, a patch is available for EUVD-2026-23436. Update the affected software to the latest version immediately.

Rallly EUVD-2026-23436

Q: What is the CVSS score of EUVD-2026-23436?

EUVD-2026-23436 has a CVSS 4.0 base score of 2.0 (Low). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

| CVE-2026-6493 LOW

Cross-site Scripting (XSS) (CWE-79)

2026-04-17 VulDB

GHSA-cv47-g53v-q848

XSS Rallly

2.0

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

2.0 LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Scope

Lifecycle Timeline

Severity Changed

Apr 29, 2026 - 01:12 NVD

MEDIUM LOW

CVSS changed

Apr 29, 2026 - 01:12 NVD

5.1 (MEDIUM) 2.0 (LOW)

PoC Detected

Apr 29, 2026 - 01:00 vuln.today

Public exploit code

Severity Changed

Apr 17, 2026 - 15:22 NVD

LOW MEDIUM

CVSS changed

Apr 17, 2026 - 15:22 NVD

3.5 (LOW) 5.1 (MEDIUM)

Analysis Generated

Apr 17, 2026 - 15:00 vuln.today

EUVD ID Assigned

Apr 17, 2026 - 14:45 euvd

EUVD-2026-23436

Analysis Generated

Apr 17, 2026 - 14:45 vuln.today

Patch released

Apr 17, 2026 - 14:45 nvd

Patch available

CVE Published

Apr 17, 2026 - 14:15 nvd

LOW 2.0

DescriptionCVE.org

A flaw has been found in lukevella rallly up to 4.7.4. This affects an unknown function of the file apps/web/src/app/[locale]/(auth)/reset-password/components/reset-password-form.tsx of the component Reset Password Handler. Executing a manipulation of the argument redirectTo can lead to cross site scripting. The attack can be executed remotely. The exploit has been published and may be used. Upgrading to version 4.8.0 mitigates this issue. Upgrading the affected component is advised. The vendor was contacted early about this disclosure.

AnalysisAI

Cross-site scripting (XSS) in lukevella Rallly up to version 4.7.4 allows authenticated users to inject malicious scripts via the redirectTo parameter in the reset password form, affecting the stored XSS vector with user interaction required. The vulnerability has public exploit code available and is mitigated by upgrading to version 4.8.0 or later. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Obtain or create valid Rallly user account

Delivery

Craft malicious reset-password URL with XSS payload in redirectTo parameter

Exploit

Send link to victim via email/message

Execution

Victim clicks link while authenticated

Persist

Payload executes in victim's session context

Impact

Attacker steals session token or performs unauthorized action