CVE-2026-58500 | appium MCP up to 1.85.9 Locator Generator UI createLocatorGeneratorUI text/content-desc/resource-id/locator selector cross site scripting

SecurityVulns

A vulnerability, which was classified as problematic, has been found in appium MCP up to 1.85.9. Affected by this vulnerability is the function createLocatorGeneratorUI of the component Locator Generator UI. This manipulation of the argument text/content-desc/resource-id/locator selector causes cross site scripting.

The identification of this vulnerability is CVE-2026-58500. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More