A vulnerability categorized as problematic has been discovered in storybookjs telejson up to 5.x . Affected is the function parse of the component JSON Handler . Such manipulation leads to cross site scripting. This vulnerability is documented as CVE-2026-47099 . The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.