Cross-site Scripting Flaw in Fast Flow by fastflow
CVE-2025-26868
7.1HIGH
What is CVE-2025-26868?
The Fast Flow application is susceptible to a Cross-site Scripting (XSS) vulnerability due to improper neutralization of input during web page generation. This reflected XSS issue could allow attackers to inject malicious scripts into web pages viewed by users. Affected versions include all versions up to and including 1.2.16, enabling potential exploitation that could compromise user sessions or gather sensitive information.
Affected Version(s)
Fast Flow <= 1.2.16