CVE-2026-30919

Name of the Vulnerable Software and Affected Versions facileManager versions prior to 6.0.4

Description facileManager is a suite of web applications designed for system administrators. A stored cross-site scripting (XSS) issue exists in the fmDNS module. This type of attack occurs when an application receives data from an untrusted source and includes it in HTTP responses without proper sanitization. Stored XSS, also known as persistent or second-order XSS, allows malicious scripts to be stored on the target server and executed by other users.

Recommendations Update to version 6.0.4 or later.