NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-30691

Summary	Cross-Site Scripting (XSS) vulnerability in @cyntler/react-doc-viewer v1.17.1 allows remote attackers to execute arbitrary JavaScript via a crafted .txt file. The TXTRenderer component fails to sanitize file content and explicitly casts raw data as a ReactNode
Publication Date	May 21, 2026, 3:16 a.m.
Registration Date	May 21, 2026, 4:10 a.m.
Last Update	May 21, 2026, 3:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/cyntler/react-doc-viewer/issues/317	cve@mitre.org
2	https://github.com/walidriouah/CVE-2026-30691	cve@mitre.org

Common Vulnerabilities List