CVE-2026-38936

A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/selectindices.php via the namecontains parameter

medium 6.1 CVSS 3.1
Published: Apr 27, 2026
Modified: Apr 27, 2026

Description

A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/selectindices.php via the namecontains parameter

References