CVE-2026-24824

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in yacy yacy_search_server (source/net/yacy/http/servlets modules). This vulnerability is associated with program files YaCyDefaultServlet.Java. This issue affects yacy_search_server.

The following products are affected by CVE-2026-24824 vulnerability.

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-24824.

URL	Resource
https://github.com/yacy/yacy_search_server/pull/722