Walid Riouah

1 exploit Active since May 2026
CVE-2026-30691 GITHUB MEDIUM WRITEUP
@cyntler/react-doc-viewer 1.17.1 - Cross-Site Scripting via TXTRenderer Component
Cross-Site Scripting (XSS) vulnerability in @cyntler/react-doc-viewer v1.17.1 allows remote attackers to execute arbitrary JavaScript via a crafted .txt file. The TXTRenderer component fails to sanitize file content and explicitly casts raw data as a ReactNode
CVSS 6.1