CVE-2026-40096 | immich up to 2.7.2 Name cross site scripting

A vulnerability labeled as problematic has been found in immich up to 2.7.2. Affected by this vulnerability is an unknown functionality of the component Name Handler. The manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-40096. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More