Known Vulnerabilities for Canarytokens by Thinkst Applied Research
Listed below are 4 of the newest known vulnerabilities associated with "Canarytokens" by "Thinkst Applied Research".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-13140 json | Stored Cross-Site Scripting in the exposed AWS API key store of Thinkst Applied Research Canarytokens. Anonymous exploit... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-12888 json | An HTML injection vulnerability exists in the Google Chat webhook notification sent by Thinkst Applied Research Canarytoken... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-11859 json | An HTML injection vulnerability in the "fetch links" email sent by Thinkst Applied Research Canarytokens, enabling Interface ... | Not Provided | 2026-06-10 | 2026-06-10 |
| CVE-2026-10729 json | An HTML injection vulnerability in the notification email for "Slow Redirect" and "Cloned Website" Canarytokens exists in Thi... | Not Provided | 2026-06-03 | 2026-06-03 |