cvedb.io
CVE-2026-22813
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2026-01-12T23:15:53.523 · Last modified 2026-06-17T10:20:28.463

Summary

OpenCode is an open source AI coding agent. The markdown renderer used for LLM responses will insert arbitrary HTML into the DOM. There is no sanitization with DOMPurify or even a CSP on the web interface to prevent JavaScript execution via HTML injection. This means controlling the LLM response for a chat session gets JavaScript execution on the http://localhost:4096 origin. This vulnerability is fixed in 1.1.10.

Affected products

anoma — opencode

Does this affect you?

Add your gear to cvedb and we'll alert you only when anoma ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.