Spandan Pokhrel

#12521of 53,632
21.7Total CVSS
Vulnerabilities · 3
Medium
1
High
2
PT-2026-40259
6.4
2026-05-11
Microsoft · Edge · CVE-2026-42838
**Name of the Vulnerable Software and Affected Versions** Microsoft Edge (Chromium-based) (affected versions not specified) **Description** Improper neutralization of special elements in output used by a downstream component (injection) allows an unauthorized attacker to elevate privileges over a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2026-38578
7.8
2026-05-07
Microsoft · Edge Copilot Chat · CVE-2026-33111
**Name of the Vulnerable Software and Affected Versions** Microsoft Edge Copilot Chat (affected versions not specified) **Description** Improper neutralization of special elements used in a command, known as command injection, allows an unauthorized attacker to disclose information over a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2026-26354
7.5
2026-03-19
Microsoft · Copilot · CVE-2026-26136
**Name of the Vulnerable Software and Affected Versions** Microsoft Copilot (affected versions not specified) **Description** An improper neutralization of special elements used in a command ('command injection') exists in Microsoft Copilot. This allows an unauthorized attacker to disclose information over a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.