CVE-2026-27440

Name of the Vulnerable Software and Affected Versions myCred versions through 2.9.7.6

Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Stored Cross-site Scripting (XSS) issue. This allows for the injection of malicious scripts into web pages.

Recommendations Update myCred to a version later than 2.9.7.6.