CVE-2026-40302 | openziti zrok up to 2.0.0 ProxyUi Template Engine cross site scripting (GHSA-4fxq-2x3x-6xqx)

A vulnerability has been found in openziti zrok up to 2.0.0 and classified as problematic. The impacted element is an unknown function of the component ProxyUi Template Engine. This manipulation causes cross site scripting.

This vulnerability appears as CVE-2026-40302. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More