{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-10729","assignerOrgId":"0f2be0ad-3469-4e56-b38f-4eb96719b425","state":"PUBLISHED","assignerShortName":"ThinkstAppliedResearch","dateReserved":"2026-06-03T10:21:12.713Z","datePublished":"2026-06-03T13:02:15.195Z","dateUpdated":"2026-06-03T15:44:50.812Z"},"containers":{"cna":{"providerMetadata":{"orgId":"0f2be0ad-3469-4e56-b38f-4eb96719b425","shortName":"ThinkstAppliedResearch","dateUpdated":"2026-06-03T13:02:15.195Z"},"title":"HTML injection in the notification email for \"Slow Redirect\" and \"Cloned Website\" Canarytokens","datePublic":"2026-06-03T10:53:00.000Z","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-74","description":"CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')","type":"CWE"}]}],"impacts":[{"capecId":"CAPEC-113","descriptions":[{"lang":"en","value":"CAPEC-113 Interface Manipulation"}]},{"capecId":"CAPEC-63","descriptions":[{"lang":"en","value":"CAPEC-63 Cross-Site Scripting (XSS)"}]}],"affected":[{"vendor":"Thinkst Applied Research","product":"Canarytokens","versions":[{"status":"affected","version":"sha-c42435e","lessThan":"sha-bfda4df","versionType":"custom"},{"status":"affected","version":"c42435e","lessThan":"bfda4df","versionType":"git"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"An HTML injection vulnerability in the notification email for \"Slow Redirect\" and \"Cloned Website\" Canarytokens exists in Thinkst Applied Research Canarytokens, enabling Interface Manipulation, Cross-Site Scripting (XSS) in emails clients that render HTML emails.\n\n\nThis issue affects Canarytokens: from Docker tag sha-c42435e before sha-bfda4df, from Git commit c42435e before bfda4df.","supportingMedia":[{"type":"text/html","base64":false,"value":"An HTML injection vulnerability in the notification email for \"Slow Redirect\" and \"Cloned Website\" Canarytokens exists in Thinkst Applied Research Canarytokens, enabling Interface Manipulation, Cross-Site Scripting (XSS) in emails clients that render HTML emails.
This issue affects Canarytokens: from Docker tag sha-c42435e before sha-bfda4df, from Git commit c42435e before bfda4df.
"}]}],"references":[{"url":"https://github.com/thinkst/canarytokens/security/advisories/GHSA-hmjv-pj8j-8fg7","tags":["vendor-advisory"]}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV4_0":{"attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"NONE","subConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","subIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","Safety":"NOT_DEFINED","Automatable":"NO","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"LOW","providerUrgency":"GREEN","version":"4.0","baseSeverity":"LOW","baseScore":1.2,"vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:P/AU:N/RE:L/U:Green"}}],"solutions":[{"lang":"en","value":"Pull the latest Docker image:\n\n\n$ docker pull thinkst/canarytokens:latest","supportingMedia":[{"type":"text/html","base64":false,"value":"Pull the latest Docker image: