VYPR
Medium severity5.3NVD Advisory· Published May 26, 2026· Updated May 26, 2026

CVE-2026-39642

CVE-2026-39642

Description

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in SpabRice Nyla allows Code Injection.

This issue affects Nyla: from n/a through 1.7.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

1