CVE-2026-53649 is a critical vulnerability affecting github.com/BishopFox/joro versions < 0.0.0-20260601151442-5c0ca35db828 affecting github.com/BishopFox/joro versions ** Joro ≤ v1 with a CVSS score of 9.6 affecting Joro versions <= v1.1.0 in default proxy mode, allowing cross-origin JavaScript to reach privileged endpoints directly through the operator's browser, resulting in unauthenticated remote code execution as the operator's user from a single page visit. The flaw combines three weaknesses: no authentication in proxy mode, permissive CORS with an insufficient protection assumption, and plugin init executed on plugin.Open before symbol lookup. This vulnerability yields unauthenticated, remote, browser-mediated code execution as the operator's user, allowing an attacker to obtain an interactive shell as the operator's user through a single page visit.
We recommend you to update Joro to version 0.0.0-20260601151442-5c0ca35db828.[/subscribe_to_unlock_form]
CVE-2026-53649 is a critical vulnerability affecting github.com/BishopFox/joro versions < 0.0.0-20260601151442-5c0ca35db828 affecting github.com/BishopFox/joro versions ** Joro ≤ v1 with a CVSS score of 9.6 affecting Joro versions <= v1.1.0 in default proxy mode, allowing cross-origin JavaScript to reach privileged endpoints directly through the operator's browser, resulting in unauthenticated remote code execution as the operator's user from a single page visit. The flaw combines three weaknesses: no authentication in proxy mode, permissive CORS with an insufficient protection assumption, and plugin init executed on plugin.Open before symbol lookup. This vulnerability yields unauthenticated, remote, browser-mediated code execution as the operator's user, allowing an attacker to obtain an interactive shell as the operator's user through a single page visit.
We recommend you to update Joro to version 0.0.0-20260601151442-5c0ca35db828.[emaillocker id="1283"]
The following reports contain further technical details:
[/emaillocker]