CNNVD-202601-1161 Information

CNNVD ID

CNNVD-202601-1161

Related CVE

CVE-2026-21855

• CNNVD Published: 2026-01-07

Description (Chinese)

Tarkov Data Manager是The Hideout开源的一个数据库管理工具。 Tarkov Data Manager 2025年01月02日之前版本存在跨站脚本漏洞，该漏洞源于toast通知系统存在反射型跨站脚本，可能导致攻击者在受害者浏览器环境中执行任意JavaScript。

Description (English)

Tarkov Data Manager is a database management tool for The Hideout Open Source. Tarkov Data Manager had a cross-site script loophole in the version prior to 02/0225, which stemmed from the reflection-type cross-site script of the Toast notification system, which could lead to the perpetrator ’ s execution of any JavaScript in the victim browser environment.

Hazard Level

Low

Vulnerability Type

跨站脚本

Affected Vendor

The Hideout

Published

2026-01-07

Last Modified

2026-02-24

References

https://github.com/the-hideout/tarkov-data-manager/security/advisories/GHSA-9c23-rrg9-jc89

Patch

https://github.com/the-hideout/tarkov-data-manager