Tarkov Data Manager

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-21856 HIGH POC PATCH This Week

The Tarkov Data Manager is a tool to manage the Tarkov item data. [CVSS 7.2 HIGH]

MySQL SQLi Tarkov Data Manager
NVD GitHub
CVSS 3.1
7.2
EPSS
0.0%
CVE-2026-21855 CRITICAL POC Act Now

Tarkov Data Manager has reflected XSS in the toast notification system. Attackers can craft URLs that execute arbitrary JavaScript in the victim's browser, stealing session tokens. PoC available, fixed in January 2025.

XSS Tarkov Data Manager
NVD GitHub
CVSS 3.1
9.3
EPSS
0.0%
CVE-2026-21854 CRITICAL PATCH Act Now

Tarkov Data Manager's login endpoint can be bypassed using JavaScript prototype property access combined with loose equality type coercion. Any unauthenticated user can gain full admin access. Fixed in January 2025 commits.

Authentication Bypass Tarkov Data Manager
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2026-21856
EPSS 0% CVSS 7.2
HIGH POC PATCH This Week

The Tarkov Data Manager is a tool to manage the Tarkov item data. [CVSS 7.2 HIGH]

MySQL SQLi Tarkov Data Manager
NVD GitHub
CVE-2026-21855
EPSS 0% CVSS 9.3
CRITICAL POC Act Now

Tarkov Data Manager has reflected XSS in the toast notification system. Attackers can craft URLs that execute arbitrary JavaScript in the victim's browser, stealing session tokens. PoC available, fixed in January 2025.

XSS Tarkov Data Manager
NVD GitHub
CVE-2026-21854
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Tarkov Data Manager's login endpoint can be bypassed using JavaScript prototype property access combined with loose equality type coercion. Any unauthenticated user can gain full admin access. Fixed in January 2025 commits.

Authentication Bypass Tarkov Data Manager
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy