CVE-2026-20894

Publication date

2026-01-16 08:16:57

Family

jpcert

State

PUBLISHED

Description

Cross-site scripting vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation. If an attacking administrator configures the affected product with some malicious input, an arbitrary script may be executed on the web browser of a victim administrator who accesses the setting screen.