Mark O'Donnell · Mstw League Manager · CVE-2026-34890
Name of the Vulnerable Software and Affected Versions
Mark O’Donnell MSTW League Manager versions through 2.10
Description
Mark O’Donnell MSTW League Manager is susceptible to a DOM-Based Cross-Site Scripting (XSS) issue due to improper neutralization of input during web page generation. This allows for potential malicious code execution within the context of the user's browser.
Recommendations
Update Mark O’Donnell MSTW League Manager to a version later than 2.10.