CVE-2026-44245 | Kyverno up to 2.5.1 isURL results[] cross site scripting (GHSA-q98m-7w8c-w388)

A vulnerability was found in Kyverno up to 2.5.1. It has been rated as problematic. Affected is the function isURL. The manipulation of the argument results[] leads to cross site scripting.

This vulnerability is documented as CVE-2026-44245. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More