Severity:
HIGH RISK
(8.7)
Stored Cross-Site Scripting (CWE-79) via SVG Hotlinks in Gokapi File Sharing Server
CVE-2026-28683
Published:
Mar 5, 2026
Status:
Received
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV
