CVE-2026-30862

CRITICAL

Appsmith < 1.96 - Stored Cross-Site Scripting in Table Widget via Invite Users Feature

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2026-30862. PoCs published by XiaomingX, drkim-dev.

AI-analyzed exploit summary The repository contains only a minimal README with a CVE title and no functional exploit code, technical details, or proof-of-concept implementation. It lacks depth and appears to be a placeholder.

Description

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.96, a Critical Stored XSS vulnerability exists in the Table Widget (TableWidgetV2). The root cause is a lack of HTML sanitization in the React component rendering pipeline, allowing malicious attributes to be interpolated into the DOM. By leveraging the "Invite Users" feature, an attacker with a regular user account ([email protected]) can force a System Administrator to execute a high-privileged API call (/api/v1/admin/env), resulting in a Full Administrative Account Takeover. This vulnerability is fixed in 1.96.

Exploits (2)

github STUB 10 stars

by XiaomingX · pythonpoc

https://github.com/XiaomingX/data-cve-poc-py-v1/tree/main/2026/CVE-2026-30862

View Code ZIP pw:eip

The repository contains only a minimal README with a CVE title and no functional exploit code, technical details, or proof-of-concept implementation. It lacks depth and appears to be a placeholder.

Classification

Stub 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Theoretical

Target: appsmith (version unspecified)

No auth needed

Prerequisites: none specified

MITRE ATT&CK

T1059.007 - JavaScript T1189 - Drive-by Compromise

devstral-2 · analyzed Mar 11, 2026 Full analysis →

nomisec WRITEUP 1 stars

by drkim-dev · poc

https://github.com/drkim-dev/CVE-2026-30862

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2026-30862, a critical stored XSS vulnerability in Appsmith's Table Widget that leads to privilege escalation. It includes root cause analysis, vulnerable code snippets, and a step-by-step PoC for exploitation.

Classification

Writeup 100%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: Appsmith ≤ 1.95

Auth required

Prerequisites: Regular user account access · Ability to invite administrators to view a malicious table widget

MITRE ATT&CK

T1059.007 - JavaScript T1189 - Drive-by Compromise

devstral-2 · analyzed Mar 18, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://github.com/appsmithorg/appsmith/security/advisories/GHSA-5hw4-whxv-6794

Scores

CVSS v3 9.0

EPSS 0.0006

EPSS Percentile 19.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-79

Status published

Products (1)

appsmith/appsmith < 1.96

Published Mar 10, 2026

Tracked Since Mar 11, 2026