CVE-2026-41673 | xmldom prior 0.8.13/0.9.10 lib/dom.js recursion (GHSA-2v35-w6hq-6mfw)

May 7, 2026 Yanac

A vulnerability has been found in xmldom and classified as problematic. The affected element is an unknown function in the library lib/dom.js. The manipulation leads to uncontrolled recursion.

This vulnerability is listed as CVE-2026-41673. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2026-44114 | OpenClaw up to 2026.4.19 incomplete blacklist (GHSA-hxvm-xjvf-93f3)
CVE-2026-41669 | admidio up to 5.0.8 validateSignature signature verification (GHSA-25cw-98hg-g3cg)