CVE-2026-44651 | SillyTavern up to 1.17.x User Interface url cross site scripting

A vulnerability was found in SillyTavern up to 1.17.x. It has been classified as problematic. This vulnerability affects unknown code of the component User Interface. The manipulation of the argument url leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-44651. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More