Dev.to
CVE-2026-33044: CVE-2026-33044: Stored Cross-Site...
CVE-2026-33044: Stored Cross-Site Scripting in Home Assistant Map-Card Vulnerability ID: CVE-2026-33044 CVSS Score: 7.3 Published: 2026-03-27 Home Assistant versions prior to 2026.01 are vulnerable to a stored Cross-Site Scripting (XSS) flaw in the Map-card component. An authenticated attacker can inject malicious JavaScript into an entity name, which executes when a victim hovers over historical movement data points in the dashboard. TL;DR A stored XSS vulnerability in the Home Assistant Map-ca
Read original on dev.to0
0Related
Hacker News
$500 GPU outperforms Claude Sonnet on coding benchmarks
Discussed on Hacker News with 377 points and 217 comments.
377
217Hacker News
Whistler: Live eBPF Programming from the Common Lisp REPL
Discussed on Hacker News with 115 points and 13 comments.
115
13Hacker News
Anthropic Subprocessor Changes
Discussed on Hacker News with 98 points and 44 comments.
98
44Liked this? Start your own feed.
Your own feed is waiting.
Comment
Sign in to join the discussion.
Loading comments…