Talend Adm Center Stored XSS via Server Manager (CVE-2026-9056)
CVE-2026-9056 Published on May 20, 2026
Security fix for Qlik Talend Administration Center cross-site scripting vulnerability
A stored cross-site scripting vulnerability has been found in the Talend Administration Center. An attacker with permission to manage servers can store a XSS payload that can be triggered by a different user.
Products Associated with CVE-2026-9056
Want to know whenever a new CVE is published for Talend Administration Center? stack.watch will email you.
Affected Versions
Talend Administration Center:- Version 8.0 and below Patch_20260123_QTAC-1883 (cumulative patch)_R2026-01_v1-8.0.1 is affected.