CVE-2026-42615

CVSS v3.1

7.2

High

AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

CVE-2026-42615 GCHQ CyberChef before 11.0.0 allows XSS via Show Base64 offsets, as demonstrated by the /#recipe=Show Base64 offsets('%3Cscript substring. https://t.co/DQZVHm0twJ

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2026-42615

Affected Products

Cyberchef

CVE-2026-42615

Weakness Enumeration

Related Identifiers

Affected Products

References · 7