CVE-2026-27627

Published: Feb 25, 2026

Modified: Feb 25, 2026

PUBLISHED

CVSS v3.1

8.2

HIGH

Description

Karakeep is a elf-hostable bookmark-everything app. In version 0.30.0, when the Reddit metascraper plugin returns `readableContentHtml`, the HTML parsing subprocess uses it directly without running it through DOMPurify. Every other content source in the crawler goes through Readability + DOMPurify, but the Reddit path skips both. Since this content ends up in `dangerouslySetInnerHTML` in the reader view, any malicious HTML in the Reddit response gets executed in the user's browser. Version 0.31.0 contains a patch for this issue.

Vendor	Product	Versions
karakeep-app	karakeep	affected `= 0.30.0`

Weaknesses (CWE)

CWE-79

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

Low

Availability

None

References

https://github.com/karakeep-app/karakeep/security/advisories/GHSA-mg93-f9mw-wpgj

x_refsource_CONFIRM

https://github.com/karakeep-app/karakeep/commit/ba3db953c0d8675e2e3ecc29113a332b570b2cb9

x_refsource_MISC

https://github.com/karakeep-app/karakeep/releases/tag/v0.31.0

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-27627

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References