A vulnerability was found in Tina CMS up to 3.9.2. It has been rated as problematic. The affected element is an unknown function. Performing a manipulation of the argument url results in cross site scripting.
This vulnerability is identified as CVE-2026-55661. The attack can be initiated remotely. There is not any exploit available.
Upgrading the affected component is advised.