CVE-2026-0788

Name of the Vulnerable Software and Affected Versions ALGO 8180 IP Audio Alerter (affected versions not specified)

Description A flaw exists in the ALGO 8180 IP Audio Alerter Web UI that allows remote attackers to execute web requests with a target user's privileges. Authentication is not required for exploitation. The issue stems from insufficient validation of user-supplied data when viewing the syslog, enabling arbitrary script injection. An attacker can then interact with the application as the target user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.