CVE-2026-58191 | Appium up to 10.6.x Route /test/guinea-pig compileLodashTemplate throwError/comments/User-Agent cross site scripting

SecurityVulns

A vulnerability was found in Appium up to 10.6.x. It has been declared as problematic. Impacted is the function compileLodashTemplate of the file /test/guinea-pig of the component Route Handler. Such manipulation of the argument throwError/comments/User-Agent leads to cross site scripting.

This vulnerability is documented as CVE-2026-58191. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More