CVE-2026-27948

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter ?setck=.... Version 1.20.9 fixes the issue...

GHSA-62CR-6WP5-Q43H Copyparty vulnerable to reflected XSS via setck parameter

Summary An XSS allows for reflected cross-site scripting via URL-parameter ?setck=... Details A reflected cross-site scripting XSS vulnerability could allow an attacker to execute malicious javascript by tricking users into accessing a malicious link. The worst-case outcome of this is being able ...

EUVD-2026-8813

Copyparty vulnerable to reflected XSS via setck parameter...

Copyparty vulnerable to reflected XSS via setck parameter

Summary An XSS allows for reflected cross-site scripting via URL-parameter ?setck=... Details A reflected cross-site scripting XSS vulnerability could allow an attacker to execute malicious javascript by tricking users into accessing a malicious link. The worst-case outcome of this is being able ...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the setck parameter. An attacker can execute arbitrary JavaScript in the context of the victim's browser by tricking users into clicking a crafted link, potentially allowing actions such as moving, deleting,...

CVE-2026-27948

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter ?setck=.... Version 1.20.9 fixes the issue...

CVE-2026-27948 Copyparty vulnerable to eflected cross-site scripting via setck parameter

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter ?setck=.... Version 1.20.9 fixes the issue...

CVE-2026-27948 Copyparty vulnerable to eflected cross-site scripting via setck parameter

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter ?setck=.... Version 1.20.9 fixes the issue...

CVE-2026-27948 Copyparty vulnerable to eflected cross-site scripting via setck parameter

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter ?setck=.... Version 1.20.9 fixes the issue...

CVE-2026-27948

Copyparty (portable file server) is affected by CVE-2026-27948 via a reflected XSS in the URL parameter ?setck=.... Versions before 1.20.9 are vulnerable; version 1.20.9 contains the fix. The vulnerability could allow execution of malicious scripts in a victim’s browser and, per related advisorie...

CVE-2026-27948

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter ?setck=.... Version 1.20.9 fixes the issue...

Copyparty 跨站脚本漏洞

Copyparty is a portable file server developed by Ed’s individual developer. Versions of Copyparty prior to 1.20.9 contained a cross-site scripting vulnerability, which was caused by the URL parameter setck, which allowed for reflective cross-site scripting...

PT-2026-22101

Name of the Vulnerable Software and Affected Versions Copyparty versions prior to 1.20.9 Description Copyparty is a portable file server susceptible to a cross-site scripting issue. A successful exploit allows for reflected cross-site scripting through the URL parameter ?setck=.... Recommendation...

Copyparty 跨站脚本漏洞

Copyparty is a portable file server for ed individual developers. A cross-site scripting vulnerability exists in versions prior to copyparty 1.8.7, which stems from a reflected cross-site scripting XSS vulnerability in parameters k304 and setck...