A vulnerability described as problematic has been identified in rejetto HFS up to 3.2.0. This affects an unknown part of the component Basic. The manipulation of the argument get results in cross site scripting.
This vulnerability was named CVE-2026-61504. The attack may be performed from remote. There is no available exploit.