Medium severity5.4NVD Advisory· Published Apr 8, 2026· Updated Apr 17, 2026
CVE-2026-27787
CVE-2026-27787
Description
Cross-site scripting vulnerability exists in MATCHA SNS 1.3.9 and earlier. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the website using the product.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.3.9
Patches
Vulnerability mechanics
References
2- jvn.jp/en/jp/JVN33581068/nvdThird Party Advisory
- oss.icz.co.jp/news/nvdVendor Advisory
News mentions
0No linked articles in our index yet.