VYPR
Medium severity6.5NVD Advisory· Published Apr 11, 2026· Updated Apr 17, 2026

CVE-2026-23900

CVE-2026-23900

Description

Various stored XSS vulnerabilities in the maps- and icon rendering logic in Phoca Maps component 5.0.0-6.0.2 have been discovered.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Phoca/Maps2 versions
    cpe:2.3:a:phoca:maps:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:phoca:maps:*:*:*:*:*:*:*:*range: >=5.0.0,<=6.0.2
    • (no CPE)range: 5.0.0-6.0.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.