CVE-2026-9566

MEDIUM

teableio teable Sign-up LoginPage.tsx cross site scripting

Title source: cna
STIX 2.1

Description

A vulnerability was identified in teableio teable up to 1.9.x. This impacts an unknown function of the file apps/nextjs-app/src/features/auth/pages/LoginPage.tsx of the component Sign-up. The manipulation of the argument redirect leads to cross site scripting. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. Upgrading to version release.2026-04-21T08-57-20Z.1513 will fix this issue. The affected component should be upgraded. The vendor confirms: "The default branch of teableio/teable is develop, and the reported login redirect issue has already been fixed there. The login redirect flow now validates the redirect parameter with isValidRedirectPath() before navigation, which blocks javascript:, data:, and cross-origin redirects."

References (7)

Core 7
Core References
Vdb Entry, Technical Description vdb-entry technical-description
VDB-365628 | teableio teable Sign-up LoginPage.tsx cross site scripting
https://vuldb.com/vuln/365628
Signature, Permissions Required signature permissions-required
VDB-365628 | CTI Indicators (IOB, IOC, TTP, IOA)
https://vuldb.com/vuln/365628/cti
Third Party Advisory third-party-advisory
Submit #815798 | Teable < release.2026-04-21T08-57-20Z.1513 DOM-Based XSS, Open Redirect
https://vuldb.com/submit/815798

Scores

CVSS v3 4.3
EPSS 0.0028
EPSS Percentile 19.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79 CWE-94
Status published
Products (11)
teableio/teable 1.0
teableio/teable 1.1
teableio/teable 1.2
teableio/teable 1.3
teableio/teable 1.4
teableio/teable 1.5
teableio/teable 1.6
teableio/teable 1.7
teableio/teable 1.8
teableio/teable 1.9
... and 1 more
Published May 26, 2026
Tracked Since May 26, 2026