CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-33193

Docmost is open-source collaborative wiki and documentation software. Versions prior to 0.70.0 are vulnerable to a stored cross-site scripting (XSS) attack due to improper handling of MIME type spoofing (GHSL-2026-052). An attacker could exploit this flaw to inject malicious scripts, potentially compromising the security of users and data. Version 0.70.0 contains a patch.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.2%

CVSS Severity

CVSS v3 Score 4.6

References

https://github.com/docmost/docmost/security/advisories/GHSA-7cq4-577p-wp6p

Products affected by CVE-2026-33193

Docmost » Docmost » Version: 0.10.0

cpe:2.3:a:docmost:docmost:0.10.0
Docmost » Docmost » Version: 0.10.1

cpe:2.3:a:docmost:docmost:0.10.1
Docmost » Docmost » Version: 0.10.2

cpe:2.3:a:docmost:docmost:0.10.2
Docmost » Docmost » Version: 0.2.0

cpe:2.3:a:docmost:docmost:0.2.0
Docmost » Docmost » Version: 0.2.1

cpe:2.3:a:docmost:docmost:0.2.1
Docmost » Docmost » Version: 0.2.10

cpe:2.3:a:docmost:docmost:0.2.10
Docmost » Docmost » Version: 0.2.2

cpe:2.3:a:docmost:docmost:0.2.2
Docmost » Docmost » Version: 0.2.3

cpe:2.3:a:docmost:docmost:0.2.3
Docmost » Docmost » Version: 0.2.4

cpe:2.3:a:docmost:docmost:0.2.4
Docmost » Docmost » Version: 0.2.5

cpe:2.3:a:docmost:docmost:0.2.5
Docmost » Docmost » Version: 0.2.7

cpe:2.3:a:docmost:docmost:0.2.7
Docmost » Docmost » Version: 0.2.8

cpe:2.3:a:docmost:docmost:0.2.8
Docmost » Docmost » Version: 0.2.9

cpe:2.3:a:docmost:docmost:0.2.9
Docmost » Docmost » Version: 0.20.0

cpe:2.3:a:docmost:docmost:0.20.0
Docmost » Docmost » Version: 0.20.1

cpe:2.3:a:docmost:docmost:0.20.1
Docmost » Docmost » Version: 0.20.2

cpe:2.3:a:docmost:docmost:0.20.2
Docmost » Docmost » Version: 0.20.3

cpe:2.3:a:docmost:docmost:0.20.3
Docmost » Docmost » Version: 0.20.4

cpe:2.3:a:docmost:docmost:0.20.4
Docmost » Docmost » Version: 0.21.0

cpe:2.3:a:docmost:docmost:0.21.0
Docmost » Docmost » Version: 0.22.0

cpe:2.3:a:docmost:docmost:0.22.0
Docmost » Docmost » Version: 0.22.1

cpe:2.3:a:docmost:docmost:0.22.1
Docmost » Docmost » Version: 0.22.2

cpe:2.3:a:docmost:docmost:0.22.2
Docmost » Docmost » Version: 0.23.0

cpe:2.3:a:docmost:docmost:0.23.0
Docmost » Docmost » Version: 0.23.1

cpe:2.3:a:docmost:docmost:0.23.1
Docmost » Docmost » Version: 0.23.2

cpe:2.3:a:docmost:docmost:0.23.2
Docmost » Docmost » Version: 0.24.0

cpe:2.3:a:docmost:docmost:0.24.0
Docmost » Docmost » Version: 0.24.1

cpe:2.3:a:docmost:docmost:0.24.1
Docmost » Docmost » Version: 0.25.0

cpe:2.3:a:docmost:docmost:0.25.0
Docmost » Docmost » Version: 0.25.1

cpe:2.3:a:docmost:docmost:0.25.1
Docmost » Docmost » Version: 0.25.2

cpe:2.3:a:docmost:docmost:0.25.2
Docmost » Docmost » Version: 0.25.3

cpe:2.3:a:docmost:docmost:0.25.3
Docmost » Docmost » Version: 0.3.0

cpe:2.3:a:docmost:docmost:0.3.0
Docmost » Docmost » Version: 0.3.1

cpe:2.3:a:docmost:docmost:0.3.1
Docmost » Docmost » Version: 0.4.0

cpe:2.3:a:docmost:docmost:0.4.0
Docmost » Docmost » Version: 0.4.1

cpe:2.3:a:docmost:docmost:0.4.1
Docmost » Docmost » Version: 0.5.0

cpe:2.3:a:docmost:docmost:0.5.0
Docmost » Docmost » Version: 0.6.0

cpe:2.3:a:docmost:docmost:0.6.0
Docmost » Docmost » Version: 0.6.1

cpe:2.3:a:docmost:docmost:0.6.1
Docmost » Docmost » Version: 0.6.2

cpe:2.3:a:docmost:docmost:0.6.2
Docmost » Docmost » Version: 0.7.0

cpe:2.3:a:docmost:docmost:0.7.0
Docmost » Docmost » Version: 0.8.0

cpe:2.3:a:docmost:docmost:0.8.0
Docmost » Docmost » Version: 0.8.1

cpe:2.3:a:docmost:docmost:0.8.1
Docmost » Docmost » Version: 0.8.2

cpe:2.3:a:docmost:docmost:0.8.2
Docmost » Docmost » Version: 0.8.3

cpe:2.3:a:docmost:docmost:0.8.3
Docmost » Docmost » Version: 0.8.4

cpe:2.3:a:docmost:docmost:0.8.4
Docmost » Docmost » Version: 0.9.0

cpe:2.3:a:docmost:docmost:0.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-33193

Products

Pricing

Contact Us