{"uuid": "ae70cf94-ff98-49d8-80c7-8e230761f3cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41201", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116532827037914049", "content": "\u26a0\ufe0f CRITICAL XSS in ci4ms 0.31.4.0 (CVE-2026-41201): Stored DOM XSS via backup filename lets attackers fully take over accounts. Upgrade to 0.31.5.0 now! https://radar.offseq.com/threat/cve-2026-41201-cwe-79-improper-neutralization-of-i-fc417f58 #OffSeq #XSS #Vuln #InfoSec", "creation_timestamp": "2026-05-07T10:30:27.429403Z"}