CVE-2026-14261
CVE-2026-14261 concerns Xerte Online Toolkits where the /setup/ directory can persist after installation, allowing an unauthenticated attacker to reconfigure the application to point to a remote database and gain administrative access, enabling remote code execution. Patches fix the issue by remo...