A vulnerability was found in mjperpinosa stumasy up to 327d1b0f2915ba79d7ef8ebb74553e987609d9be. It has been declared as problematic. This affects the function
add_definition of the file application/PHP/objects/notes/add_into_dictionary.php. Such manipulation of the argument reference leads to cross site scripting.
This vulnerability is referenced as CVE-2026-14752. It is possible to launch the attack remotely. Furthermore, an exploit is available.
This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.
The project was informed of the problem early through an issue report but has not responded yet.