Volerion logoVolerion
Volerion logoVolerion

Qlik Talend Administration Center Stored Cross-Site Scripting Vulnerability

Vulnerability

A stored cross-site scripting vulnerability has been identified in Qlik Talend Administration Center, affecting all versions prior to the cumulative patch R2026-01_v1-8.0.1. This vulnerability allows an attacker with permission to manage servers to inject an XSS payload that can be executed by another user.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user.

Remediation

Users are advised to upgrade to Qlik Talend Administration Center version R2026-01_v1-8.0.1 or later.

Added: May 20, 2026, 5:18 AM
Updated: May 20, 2026, 5:18 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
1.7
exploitability
2.8
remediation
0.0
relevance
8.9
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.