3 matches found
CVE-2026-5252
A security flaw has been discovered in z-9527 admin 1.0/2.0. Affected is an unknown function of the file /server/routes/message.js of the component Message Create Endpoint. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been releas...
CVE-2026-5252
The CVE-2026-5252 entry concerns z-9527 admin 1.0/2.0 with a vulnerability in the Message Create Endpoint. Specifically, manipulation of an as-yet-unknown function in /server/routes/message.js can cause cross-site scripting. The flaw is remotely exploitable and an exploit is publicly available. T...
CVE-2026-5252 z-9527 admin Message Create Endpoint message.js cross site scripting
A security flaw has been discovered in z-9527 admin 1.0/2.0. Affected is an unknown function of the file /server/routes/message.js of the component Message Create Endpoint. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been releas...