2 matches found
CVE-2026-25352
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in skygroup MyDecor mydecor allows Reflected XSS.This issue affects MyDecor: from n/a through 1.5.9...
PT-2026-27913
Name of the Vulnerable Software and Affected Versions skygroup MyDecor versions prior to 1.5.9 Description A flaw exists in skygroup MyDecor that allows for Reflected Cross-site Scripting XSS. This issue is due to improper handling of user-supplied input when generating web pages. Successful...