CVE-2026-12048 - pgAdmin 4: Stored XSS via untrusted error and plan-node text rendered through html-react-parser
CVE ID :CVE-2026-12048 Published : June 18, 2026, 11:37 p.m. | 1 hour, 31 minutes ago Description :Stored cross-site scripting in pgAdmin 4's error-rendering and plan-node-rendering paths. Text returned by a PostgreSQL server (ErrorResponse messages, including object names quoted back inside...