Severity:
HIGH RISK
(7.5)
XML Injection via Unsanitized CDATA Terminator (CWE-91) in xmldom DOMParser/XMLSerializer
CVE-2026-34601
Published:
Status:
Deferred
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV
