CVE-2026-27020

Photobooth prior to 1.0.1 has a cross-site scripting (XSS) vulnerability in user input fields. Malicious users could inject scripts through unvalidated form inputs. This vulnerability is fixed in 1.0.1.
CVSS

No CVSS.

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type Values Removed Values Added
Summary
  • (es) Photobooth anterior a la versión 1.0.1 tiene una vulnerabilidad de cross-site scripting (XSS) en los campos de entrada de usuario. Usuarios malintencionados podrían inyectar scripts a través de entradas de formulario no validadas. Esta vulnerabilidad está corregida en la versión 1.0.1.

20 Feb 2026, 21:19

Type Values Removed Values Added
New CVE

Information

Published : 2026-02-20 21:19

Updated : 2026-06-17 10:26


NVD link : CVE-2026-27020

Mitre link : CVE-2026-27020

CVE.ORG link : CVE-2026-27020


JSON object : View

Products Affected

No product.

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')