CVE Catalog
CVE-2026-22329
HighCVSS 7.1Summary
There is an unauthenticated Cross Site Scripting (XSS) vulnerability in Skillate versions <= 1.2.10. An attacker can exploit this flaw to inject malicious JavaScript code.
Risk Assessment
This vulnerability may lead to user data theft and session hijacking, posing a serious threat to the application's security and the organization's data.
Recommendation
It is recommended to upgrade to the latest version of Skillate to mitigate this vulnerability and conduct a security audit of the application.
Original NVD description (English source)
Unauthenticated Cross Site Scripting (XSS) in Skillate <= 1.2.10 versions.

