CVE-2026-7299 | Appsmith up to 2.0 Autocomplete cross site scripting (GHSA-vvxf-f8q9-86gh)

A vulnerability was found in Appsmith up to 2.0. It has been declared as problematic. Affected is an unknown function of the component Autocomplete. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-7299. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More