CNNVD-202601-1874 Information

CNNVD ID

CNNVD-202601-1874

Related CVE

CVE-2026-22813

• CNNVD Published: 2026-01-12

Description (Chinese)

opencode是Anomaly开源的一个AI编程智能体。 opencode 1.1.10之前版本存在安全漏洞，该漏洞源于Markdown渲染器未对LLM响应进行清理，可能导致通过HTML注入执行JavaScript。

Description (English)

Opencode is an AI programming intelligence from Anomaly Open Source. Prior to the version of opencode 1.1.10 there was a security loophole, which stemmed from the fact that the Markdown Renderer did not clean up the LLM response, which could lead to the implementation of JavaScript through HTML injections.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Anomaly

Published

2026-01-12

Last Modified

2026-02-24

References

https://github.com/anomalyco/opencode/security/advisories/GHSA-c83v-7274-4vgp https://access.redhat.com/security/cve/cve-2026-22813

Patch

https://github.com/anomalyco/opencode/releases