Cyber Resilience

CVE-2026-40487

HighPublic PoC

Published: 18 April 2026

Published
18 April 2026
Modified
23 April 2026
KEV Added
Patch
CVSS Score v3.1 8.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L
EPSS Score 0.0022 12.9th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-40487 is a high-severity Cross-site Scripting (CWE-79) vulnerability in Gitroom Postiz. Its CVSS base score is 8.9 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 12.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

This vulnerability is AI-related — categorised as LLM Application Platforms; in the Other ATLAS/OWASP Terms risk domain.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-15 (Information Output Filtering).

Deeper analysis

CVE-2026-40487 is a file upload validation bypass vulnerability in Postiz, an AI social media scheduling tool, affecting versions prior to 2.21.6. The flaw allows authenticated users to upload arbitrary HTML, SVG, or other executable file types to the server by spoofing the Content-Type header. These uploaded files are served by nginx with a Content-Type derived from their original file extension, such as text/html or image/svg+xml, enabling stored Cross-Site Scripting (XSS) in the context of the application's origin. The vulnerability is associated with CWEs-79 (XSS), CWE-345 (insufficient verification of data authenticity), and CWE-434 (unrestricted upload of files with dangerous type), and carries a CVSS v3.1 base score of 8.9 (AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L).

Any authenticated user with low privileges can exploit this vulnerability over the network with low complexity, though it requires user interaction. Attackers can upload malicious files that, when viewed or accessed by other users, execute JavaScript in the application's origin context. This enables session riding, account takeover, and full compromise of other users' accounts through the resulting stored XSS.

The GitHub security advisory (GHSA-44wg-r34q-hvfx) and release notes for version 2.21.6 confirm that updating to Postiz v2.21.6 resolves the issue by addressing the file upload validation bypass.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Postiz is an AI social media scheduling tool. Prior to version 2.21.6, a file upload validation bypass allows any authenticated user to upload arbitrary HTML, SVG, or other executable file types to the server by spoofing the `Content-Type` header. The…

more

uploaded files are then served by nginx with a Content-Type derived from their original extension (`text/html`, `image/svg+xml`), enabling Stored Cross-Site Scripting (XSS) in the context of the application's origin. This can lead to session riding, account takeover, and full compromise of other users' accounts. Version 2.21.6 contains a fix.

CWE(s)

AI Security AnalysisAI

AI Category
LLM Application Platforms
Risk Domain
Other ATLAS/OWASP Terms
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: ai

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1059.007 JavaScript Execution
Adversaries may abuse various implementations of JavaScript for execution.
Why these techniques?

The vulnerability is a file upload bypass in a public-facing web application that enables delivery of malicious HTML/SVG/JS content resulting in stored XSS and arbitrary JavaScript execution in victim browsers, directly mapping to T1190 (exploiting the public-facing app) and T1059.007 (abusing JavaScript for execution).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-42556Same product: Gitroom Postiz
CVE-2026-40168Same product: Gitroom Postiz
CVE-2026-34577Same product: Gitroom Postiz
CVE-2026-34576Same product: Gitroom Postiz
CVE-2026-42298Same product: Gitroom Postiz
CVE-2026-25802Shared CWE-79
CVE-2025-22132Shared CWE-434, CWE-79
CVE-2025-50538Shared CWE-79
CVE-2026-45315Shared CWE-434, CWE-79
CVE-2025-26907Shared CWE-79

Affected Assets

gitroom
postiz
≤ 2.21.6

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly addresses the file upload validation bypass by requiring comprehensive validation of uploaded file content and types beyond spoofed Content-Type headers.

prevent

Mitigates stored XSS by filtering output of served files to neutralize executable HTML, SVG, or script content.

preventdetect

Provides malicious code protection mechanisms to scan and block dangerous executable files or XSS payloads during upload.

References