Cross-site scripting vulnerability exists in Musetheque V4 Information Disclosure for IPKNOWLEDGE V4L1 rev2203.0 and earlier. If a file containing malicious contents is uploaded, an arbitrary script may be executed on a user's web browser when viewing the administration page showing the information of the file.
References
| Link | Resource |
|---|---|
| https://jvn.jp/en/jp/JVN69128376/ |
Configurations
No configuration.
History
15 May 2026, 06:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-05-15 06:16
Updated : 2026-06-17 10:23
NVD link : CVE-2026-24662
Mitre link : CVE-2026-24662
CVE.ORG link : CVE-2026-24662
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
