Unrated severityNVD Advisory· Published Feb 27, 2026· Updated Feb 27, 2026
Reflected XSS in Omega-PSIR
CVE-2026-1434
Description
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious URL that, when opened, causes arbitrary JavaScript to execute in the victim’s browser.
This issue was fixed in 4.6.7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=4.6.6+ 1 more
- (no CPE)range: <=4.6.6
- (no CPE)range: 4.5.9
Patches
Vulnerability mechanics
References
2- cert.pl/posts/2026/02/CVE-2026-1434mitrethird-party-advisory
- www.omegapsir.iomitreproduct
News mentions
0No linked articles in our index yet.