CVE-2026-26377
EUVD-2026-982405.03.2026, 16:16
Cross Site Scripting vulnerability in Koha 25.11 and before allows a remote attacker to execute arbitrary code via the News function.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.