All 3 CVE vulnerabilities found in Draft List, with AI-generated Chinese analysis, references, and POCs.
Vendor: dartiss
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-4006 | Draft List <= 2.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'display_name' Parameter CWE-79 | 6.4 | Medium | 2026-03-19 |
| CVE-2025-11197 | Draft List <= 2.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2025-10-11 |
| CVE-2025-10181 | Draft List <= 2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2025-09-20 |
All 3 known CVE vulnerabilities affecting Draft List with full Chinese analysis, references, and POCs where available.