Question 1

What is CVE-2026-5808?

Accepted Answer

A vulnerability was detected in openstatusHQ openstatus up to 1b678e71a85961ae319cbb214a8eae634059330c. This impacts an unknown function of the file apps/dashboard/src/app/(dashboard)/onboarding/client.tsx of the component Onboarding Endpoint. The manipulation of the argument callbackURL results in cross site scripting. The attack may be launched remotely. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases. The patch is identified as 43d9b2b9ef8ae1a98f9bdc8a9f86d6a3dfaa2dfb. It is advisable to implement a patch to correct this issue. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Question 2

What is the severity of CVE-2026-5808?

Accepted Answer

CVE-2026-5808 has a CVSS Base Score of 4.3/10 and is classified as Medium severity. It is important to assess the risk based on your specific environment.

Question 3

How do I fix CVE-2026-5808?

Accepted Answer

Remediation typically involves updating the affected software products to the latest patched version. Refer to the 'Affected Products' and 'Remediation' sections on this page for specific mitigation steps and vendor advisories.

CVE-2026-5808

Exploitation Probability (EPSS)

7-Day Exploitation Trend

Vulnerability Timeline

Threat Actor Attribution

Remediation & Mitigation

References

Am I Vulnerable?

Share This Page

Vulnerability Details

Need API Access?

Need Manual Validation?