CVE-2026-28116

Name of the Vulnerable Software and Affected Versions Emilia Projects Progress Planner versions prior to 1.9.0

Description Improper neutralization of input during web page generation allows for Stored Cross-Site Scripting (XSS), a condition where malicious scripts are permanently stored on the target server and then served to other users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.