Vulnerability in Thinkst Applied Research Canarytokens

CVE-2026-10729

An HTML injection vulnerability in the notification email for "Slow Redirect" and "Cloned Website" Canarytokens exists in Thinkst Applied Research Canarytokens, enabling Interface Manipulation, Cross-Site Scripting (XSS) in emails clients…

EPSS: 0.000 (15.0th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References