#

mime-spoofing

Here is 1 public repository matching this topic...

Astaruf / CVE-2026-40487

CVE-2026-40487 - Postiz <= 2.21.5 - Arbitrary File Upload via MIME-Type Spoofing → Stored XSS → Account Takeover

security exploit file-upload xss poc vulnerability cve account-takeover stored-xss postiz mime-spoofing cve-2026-40487

Updated Apr 22, 2026
Python

Improve this page

Add a description, image, and links to the mime-spoofing topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the mime-spoofing topic, visit your repo's landing page and select "manage topics."