A vulnerability identified as problematic has been detected in PasswordPusher up to 2.8.0. This vulnerability affects the function valid_url of the component URL Validator. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2026-59802. The attack may be initiated remotely. There is no available exploit.