CVE-2026-24476 - Vulnerability Details

Shaarli is a personal bookmarking service. Prior to version 0.16.0, crafting a malicious tag which starting with `"` prematurely ends the `<input>` tag on the start page and allows an attacker to add arbitrary html leading to a possible XSS attack. Version 0.16.0 fixes the issue.

Attack Vector Local

Attack Complexity High

Privileges Required High

Attack Requirements None

User Interaction Active

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0002.

Exploitation poc

Automatable no

Technical Impact partial

Vendors	Products
Shaarli Project Subscribe	Shaarli Subscribe

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Shaarli Project Subscribe	Shaarli Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://github.com/shaarli/Shaarli/commit/b854c789289c4b0dfbb7c1e5793bae7d8f94e063
https://github.com/shaarli/Shaarli/security/advisories/GHSA-g3xq-mj52-f8pg

History

Tue, 27 Jan 2026 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 27 Jan 2026 09:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Shaarli Project Shaarli Project shaarli
Vendors & Products		Shaarli Project Shaarli Project shaarli

Mon, 26 Jan 2026 22:45:00 +0000

Type	Values Removed	Values Added
Description		Shaarli is a personal bookmarking service. Prior to version 0.16.0, crafting a malicious tag which starting with `"` prematurely ends the `<input>` tag on the start page and allows an attacker to add arbitrary html leading to a possible XSS attack. Version 0.16.0 fixes the issue.
Title		Shaarli vulnerable to stored XSS via Suggested Tags
Weaknesses		CWE-79
References		https://github.com/shaarli/Shaarli/commit/b854c789289c4b0dfbb7c1e5793bae7d8f94e063 https://github.com/shaarli/Shaarli/security/advisories/GHSA-g3xq-mj52-f8pg
Metrics		cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-01-26T22:26:59.886Z

Updated: 2026-01-27T15:20:27.830Z

Reserved: 2026-01-23T00:38:20.547Z

Link: CVE-2026-24476

Vulnrichment

Updated: 2026-01-27T15:20:15.443Z

NVD

Status : Awaiting Analysis

Published: 2026-01-26T23:16:09.283

Modified: 2026-01-27T14:59:34.073

Link: CVE-2026-24476

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-01-27T09:03:06Z

Weaknesses

CWE-79

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required High

Attack Requirements None

User Interaction Active

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Exploitation poc

Automatable no

Technical Impact partial

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object