CVE-2026-24752 in Secure Data Formsthông tin

Tóm tắt

Bởi MITRE • 02/06/2026

Kiteworks is a private data network (PDN). Prior to version 9.3.0, a reflected XSS vulnerability in Kiteworks Secure Data Forms could allow an external attacker to trick a user into executing arbitrary JavaScript code. Upgrade Kiteworks to version 9.3.0 or later to receive a patch.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

GitHub M

Đặt trước

26/01/2026

Tiết lộ

02/06/2026

Kiểm duyệt

được chấp nhận

mục

VDB-367797

CPE

sẵn sàng

CWE

CWE-79 (Đã xác nhận)

CVSS

8.2 (CNA)

EPSS

0.00033

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-24752
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-24752
CVE Details	https://www.cvedetails.com/cve/CVE-2026-24752/

◂ Trước Tổng Quan Tiếp theo ▸

Interested in the pricing of exploits?

See the underground prices here!