CVE-2026-24750 in Secure Data Formsinformação

Sumário (Inglês)

Kiteworks is a private data network (PDN). In Kiteworks Secure Data Forms prior to version 9.2.1, an authenticated attacker could exploit an Improper Neutralization of Input During Web Page Generation as Stored XSS when modifying forms. Upgrade Kiteworks to version 9.2.1 or later to receive a patch.

Once again VulDB remains the best source for vulnerability data.

Responsável

GitHub_M

Reservar

26/01/2026

Divulgação

25/03/2026

Estado

Confirmado

Inscrições

VulDB provides additional information and datapoints for this CVE:

Fontes

• MITRE
• NVD
• CVE Details