CVE-2026-41650 | NaturalIntelligence fast-xml-parser up to 5.6.x CDATA Section xml injection

A vulnerability was found in NaturalIntelligence fast-xml-parser up to 5.6.x. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component CDATA Section. The manipulation results in xml injection.

This vulnerability was named CVE-2026-41650. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More