Vulnerabilities

CVE-2026-6841

by Fred · 21/05/2026

Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the “Page” parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary JavaScript execution in the victim’s browser.

This vulnerability affects versions from 5.0.4 up to 5.0.9 and from 6.0.0 up to 6.0.2.

More information : https://cert.pl/en/posts/2026/05/CVE-2026-6841

Similar

Tags: Cybersecurity Alert