Security Advisory

CVE-2025-41027

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-26 12:42:05
Last updated 2026-03-26 13:22:59
Assigner INCIBE
State PUBLISHED

Description

Reflected Cross Site Scripting (XSS) vulnerabilities in GDTaller. These vulnerabilities allows an attacker execute JavaScript code in the victims browser by sending a malicious URL in site parameter in app_recuperarclave.php.