CVE-2026-5783

Improper neutralization of input during web page generation (‘cross-site scripting’) vulnerability in Beyaz Computer Software Design Industry and Trade Ltd. Co. CityPLus allows Reflected XSS.

This issue affects CityPLus: before V24.29750.1.0.

More information : https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0263