2026-02-19 08:44:16
INCIBE
PUBLISHED
Reflected Cross-Site Scripting (XSS) vulnerability in /index.php in Lewe WebMeasure, which allows remote attackers to execute arbitrary code through the page parameter. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on behalf of the user.