CVE-2026-42615

Published April 29th, 2026

View on NVD ↗

CVSS v3

7.2

HIGH

CVSS v2

N/A

Affected

1

PROJECT

Description

GCHQ CyberChef before 11.0.0 allows XSS via Show Base64 offsets, as demonstrated by the /#recipe=Show_Base64_offsets('%3Cscript substring.

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

GitHub

35.1K