CVE-2026-31906
EUVD-2026-3086819.05.2026, 10:16
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache OFBiz.
This issue affects Apache OFBiz: before 24.09.06.
Users are recommended to upgrade to version 24.09.06, which fixes the issue.Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| apache | ofbiz | 𝑥 < 24.09.06 |
𝑥
= Vulnerable software versions
Vulnerability Media Exposure