CVE-2026-32517

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in Kleor Contact Manager contact-manager allows Reflected XSS.This issue affects Contact Manager: from n/a through <= 9.1.