Reflected XSS Vulnerability in Kiteworks Secure Data Forms
CVE-2026-24751
8.2HIGH
What is CVE-2026-24751?
Kiteworks Secure Data Forms prior to version 9.3.0 contain a reflected Cross-Site Scripting (XSS) vulnerability, which may permit an external attacker to execute malicious JavaScript code by tricking users into clicking on specially crafted links. This vulnerability underscores the importance of maintaining updated software versions to mitigate potential threats. Users should promptly upgrade to version 9.3.0 or higher to ensure protection against this issue.
Affected Version(s)
Secure Data Forms < 9.3.0
