CVE-2026-24751
EUVD-2026-3374901.06.2026, 21:16
Kiteworks is a private data network (PDN). Prior to version 9.3.0, a reflected XSS vulnerability in Kiteworks Secure Data Forms could allow an external attacker to trick a user into executing arbitrary JavaScript code. Upgrade Kiteworks to version 9.3.0 or later to receive a patch.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| accellion | kiteworks | 𝑥 < 9.3.0 |
𝑥
= Vulnerable software versions