CVE-2026-1630 | WEBCON BPS prior 2025.2.1.293/2026.1.3.109 URL /openinmobileapp cross site scripting

Inserito da Angelo Barbosa | Mag 14, 2026 | CVE

A vulnerability was found in WEBCON BPS. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /openinmobileapp of the component URL Handler. Executing a manipulation can lead to cross site scripting.

This vulnerability is registered as CVE-2026-1630. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-1630 | WEBCON BPS prior 2025.2.1.293/2026.1.3.109 URL /openinmobileapp cross site scripting

Post correlati

CVE-2025-7870 | Portabilis i-Diario 1.5.0 justificativas-de-falta Endpoint Anexo cross site scripting

CVE-2024-0606 | Mozilla Focus up to 122 on iOS javascript URI window.open cross site scripting

CVE-2024-48197 | AudioCodes MP-202b 4.4.3 Web Interface cross site scripting

CVE-2026-29014 | MetInfo CMS 7.9/8.0/8.1 code injection