CVE-2026-1819

HIGH 8.8

Stored XSS in Karel Electronics' ViPort

CVSS Score

8.8

EPSS Score

0.1%

EPSS Percentile

22th

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Karel Electronics Industry and Trade Inc. ViPort allows Stored XSS. This issue affects ViPort: through 23012026.

CWE	CWE-79
Vendor	karel electronics industry and trade inc.
Product	viport
Published	Feb 4, 2026
Last Updated	Jun 6, 2026

Stay Ahead of the Next One

Get instant alerts for karel electronics industry and trade inc. viport

Be the first to know when new high vulnerabilities affecting karel electronics industry and trade inc. viport are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Karel Electronics Industry and Trade Inc. / ViPort

0 ≤ 23012026

References

NVD ↗ CVE.org ↗ EPSS Data ↗

usom.gov.tr: https://www.usom.gov.tr/bildirim/tr-26-0017 siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0017

Credits

Hakan SONAY