CVE-2026-27973
- Source
- https://cve.org/CVERecord?id=CVE-2026-27973
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-27973.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-27973
- Aliases
-
- GHSA-2433-p93m-xhhg
- Published
- 2026-02-26T02:06:49.271Z
- Modified
- 2026-03-03T02:56:54.641529Z
- Severity
-
- 4.0 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- Audiobookshelf has Stored XSS in ItemSearchCard.vue via Audiobook Metadata (Search Results on Mobile App)
- Details
-
Audiobookshelf is a self-hosted audiobook and podcast server. A stored cross-site scripting (XSS) vulnerability exists in versions prior to 0.12.0-beta of the Audiobookshelf mobile application that allows arbitrary JavaScript execution through malicious library metadata. Attackers with library modification privileges can execute code in victim users' browsers/WebViews, potentially leading to session hijacking, data exfiltration, and unauthorized access to native device APIs. The issue is fixed in audiobookshelf-app version 0.12.0-beta, corresponding to audiobookshelf version 2.12.0.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/27xxx/CVE-2026-27973.json", "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-79" ] }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/27xxx/CVE-2026-27973.json
- https://github.com/advplyr/audiobookshelf-app/commit/b2c2b625e3cf586562397f4c02e38059f2b8ef5c
- https://github.com/advplyr/audiobookshelf/security/advisories/GHSA-2433-p93m-xhhg
- https://nvd.nist.gov/vuln/detail/CVE-2026-27973
Affected packages
Git / github.com/advplyr/audiobookshelf
Affected versions
0.*
0.9.61-beta
0.9.61-beta.0
v1.*
v1.0.0
v1.1.10
v1.1.11
v1.1.12
v1.1.13
v1.1.14
v1.1.15
v1.1.8
v1.1.9
v1.2.1
v1.2.4
v1.2.5
v1.2.6
v1.2.8
v1.3.1
v1.3.3
v1.3.4
v1.4.0
v1.4.1
v1.4.11
v1.4.2
v1.4.4
v1.4.6
v1.4.7
v1.4.9
v1.5.0
v1.5.5
v1.6.0
v1.7.0
v1.7.1
v1.7.2
v2.*
v2.0.1
v2.0.10
v2.0.11
v2.0.12
v2.0.13
v2.0.14
v2.0.15
v2.0.16
v2.0.17
v2.0.18
v2.0.19
v2.0.2
v2.0.20
v2.0.21
v2.0.22
v2.0.23
v2.0.24
v2.0.3
v2.0.4
v2.0.5
v2.0.6
v2.0.7
v2.0.8
v2.0.9
v2.1.0
v2.1.1
v2.1.2
v2.1.3
v2.1.4
v2.1.5
v2.10.0
v2.10.1
v2.11.0
v2.2.0
v2.2.1
v2.2.10
v2.2.11
v2.2.12
v2.2.13
v2.2.14
v2.2.15
v2.2.16
v2.2.17
v2.2.18
v2.2.19
v2.2.2
v2.2.20
v2.2.21
v2.2.22
v2.2.23
v2.2.3
v2.2.4
v2.2.5
v2.2.6
v2.2.7
v2.2.8
v2.2.9
v2.3.0
v2.3.1
v2.3.2
v2.3.3
v2.3.4
v2.3.5
v2.4.0
v2.4.1
v2.4.2
v2.4.3
v2.4.4
v2.5.0
v2.6.0
v2.7.0
v2.7.1
v2.7.2
v2.8.0
v2.8.1
v2.9.0
Git / github.com/advplyr/audiobookshelf-app
Affected ranges
- Type
- GIT
- Repo
- https://github.com/advplyr/audiobookshelf-app
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
v0.*
v0.10.0-beta
v0.10.1-beta
v0.11.0-beta
v0.9.35-beta
v0.9.36-beta
v0.9.37-beta
v0.9.38-beta
v0.9.39-beta
v0.9.40-beta
v0.9.41-beta
v0.9.42-beta
v0.9.43-beta
v0.9.44-beta
v0.9.45-beta
v0.9.46-beta
v0.9.47-beta
v0.9.48-beta
v0.9.49-beta
v0.9.50-beta
v0.9.51-beta
v0.9.52-beta
v0.9.53-beta
v0.9.54-beta
v0.9.55-beta
v0.9.56-beta
v0.9.57-beta
v0.9.58-beta
v0.9.59-beta
v0.9.60-beta
v0.9.61-beta
v0.9.62-beta
v0.9.63-beta
v0.9.64-beta
v0.9.65-beta
v0.9.66-beta
v0.9.67-beta
v0.9.68-beta
v0.9.69-beta
v0.9.70-beta
v0.9.71-beta
v0.9.72-beta
v0.9.73-beta
v0.9.74-beta
v0.9.75-beta
v0.9.76-beta
v0.9.77-beta
v0.9.78-beta
v0.9.79-beta
v0.9.80-beta
v0.9.81-beta