CVE-2026-28272

Name of the Vulnerable Software and Affected Versions Kiteworks versions prior to 9.2.0

Description Kiteworks Email Protection Gateway contains a flaw that allows authenticated administrators to inject malicious scripts through a configuration interface. These scripts execute when users interact with the affected user interface.

Recommendations Update to version 9.2.0 or later.