CVE-2026-30862

CRITICAL 9.1

Critical Stored XSS & Privilege Escalation in Appsmith

CVSS Score

9.1

EPSS Score

0.0%

EPSS Percentile

0th

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.96, a Critical Stored XSS vulnerability exists in the Table Widget (TableWidgetV2). The root cause is a lack of HTML sanitization in the React component rendering pipeline, allowing malicious attributes to be interpolated into the DOM. By leveraging the "Invite Users" feature, an attacker with a regular user account ([email protected]) can force a System Administrator to execute a high-privileged API call (/api/v1/admin/env), resulting in a Full Administrative Account Takeover. This vulnerability is fixed in 1.96.

CWE	CWE-79
Vendor	appsmithorg
Product	appsmith
Published	Mar 9, 2026
Last Updated	Mar 10, 2026

Stay Ahead of the Next One

Get instant alerts for appsmithorg appsmith

Be the first to know when new critical vulnerabilities affecting appsmithorg appsmith are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

appsmithorg / appsmith

< 1.96

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/appsmithorg/appsmith/security/advisories/GHSA-5hw4-whxv-6794