CVE-2026-2513

A vulnerability exists in Progress Flowmon ADS versions prior to 12.5.5 and 13.0.3, whereby an administrator who clicks a malicious link provided by an attacker may inadvertently trigger unintended actions within their authenticated web session.
CVSS

No CVSS.

Configurations

No configuration.

History

17 Jun 2026, 10:31

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad existe en las versiones de Progress Flowmon ADS anteriores a la 12.5.5 y la 13.0.3, por la cual un administrador que hace clic en un enlace malicioso proporcionado por un atacante puede desencadenar inadvertidamente acciones no deseadas dentro de su sesión web autenticada.

12 Mar 2026, 13:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-03-12 13:16

Updated : 2026-06-17 10:31


NVD link : CVE-2026-2513

Mitre link : CVE-2026-2513

CVE.ORG link : CVE-2026-2513


JSON object : View

Products Affected

No product.

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')