CVE-2026-24323

Name of the Vulnerable Software and Affected Versions BSP applications (affected versions not specified)

Description The applications allow an unauthenticated user to inject malicious script content through user-controlled URL parameters that are not adequately sanitized. When a victim accesses a manipulated URL, the injected script executes in the victim’s browser, resulting in a low impact on confidentiality and integrity, and no impact on application availability. The vulnerability involves the injection of malicious script via URL parameters like parameter1 and parameter2.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.