CVE-2026-41661

Description

Admidio vulnerable to reflected XSS in msg_window.php via Square Bracket to HTML Tag Conversion

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• https://github.com/advisories/GHSA-gq27-fc8w-vcmp
• https://github.com/Admidio/admidio/releases/tag/v5.0.9
• https://github.com/Admidio/admidio/security/advisories/GHSA-gq27-fc8w-vcmp
• https://nvd.nist.gov/vuln/detail/CVE-2026-41661
• https://github.com/Admidio/admidio

CWEs

CWE-79