Security Advisory

CVE-2026-24903

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-06 17:46:20

Last updated 2026-02-06 18:05:02

Assigner GitHub_M

State PUBLISHED

Description

OrcaStatLLM Researcher is an LLM Based Research Paper Generator. A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the Log Message in the Session Page in OrcaStatLLM-Researcher that allows attackers to inject and execute arbitrary JavaScript code in victims browsers through malicious research topic inputs.

← Browse all CVEs View on cve.org ↗