CVE-2026-32866 | OPEXUS eComplaint/eCASE prior 10.1.0.0 User Profile first name/last name cross site scripting

Inserito da Angelo Barbosa | Mar 19, 2026 | CVE

A vulnerability has been found in OPEXUS eComplaint and eCASE and classified as problematic. Affected by this vulnerability is an unknown functionality of the component User Profile Handler. The manipulation of the argument first name/last name leads to cross site scripting.

This vulnerability is referenced as CVE-2026-32866. Remote exploitation of the attack is possible. No exploit is available.

The affected component should be upgraded.

CVE-2026-32866 | OPEXUS eComplaint/eCASE prior 10.1.0.0 User Profile first name/last name cross site scripting

Post correlati

CVE-2024-0189 | RRJ Nueva Ecija Engineer Online Portal 1.0 Create Message teacher_message.php Content cross site scripting

CVE-2024-7838 | itsourcecode Online Food Ordering System 1.0 /addcategory.php cname sql injection

CVE-2024-12435 | a3rev Compare Products for WooCommerce Plugin up to 3.2.1 on WordPress s_feature cross site scripting

CVE-2025-60959 | EndRun Sonoma D12 Network Time Server 6010-0071-000 Ver 4.00 os command injection