CVE-2026-24623

Name of the Vulnerable Software and Affected Versions Neoforum versions prior to 1.0.

Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a Reflected Cross-site Scripting (XSS) condition. This allows attackers to inject malicious scripts into web pages viewed by other users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.