2026-02-16 09:55:53
INCIBE
PUBLISHED
Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, which is triggered through multiple parameters in the /kForms/app endpoint. This issue allows malicious scripts to be injected and executed persistently in the context of users accessing the affected resource.