CVE-2026-47376 | NocoDB up to 2026.04.0 Token cross site scripting (GHSA-6xcx-7qmg-vjfq / EUVD-2026-38627)
A vulnerability labeled as problematic has been found in NocoDB up to 2026.04.0. This affects an unknown function of the component Token Handler. Such manipulation leads to cross site scripting.
This vulnerability is referenced as CVE-2026-47376. It is possible to launch the attack remotely. No exploit is available.
The affected component should be upgraded.