Vulnerabilities

CVE-2026-27948

by Fred · 26/02/2026

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter `?setck=…`. Version 1.20.9 fixes the issue.

More information : https://github.com/9001/copyparty/commit/31b2801fd041f803f4a3d5c12c7d7cb5419048bc

Similar

Tags: Cybersecurity Alert