CVE-2026-25341

Name of the Vulnerable Software and Affected Versions RSFirewall versions prior to 1.1.45

Description The software contains a flaw due to improper handling of user-supplied data during web page creation, which can lead to stored cross-site scripting (XSS). This allows an attacker to inject malicious scripts into the application, potentially compromising user accounts or website integrity.

Recommendations Update RSFirewall to a version later than 1.1.45.