Cross-Site Scripting Vulnerability in DivvyDrive by DivvyDrive Information Technologies Inc.
CVE-2026-5220
6.4MEDIUM
Key Information:
- Status
- Vendor
- CVE Published:
- 1 July 2026
What is CVE-2026-5220?
An improper handling of input during the generation of web pages in DivvyDrive creates a vulnerability that can allow attackers to execute malicious scripts in the browser of affected users. This issue specifically impacts versions 4.8.2.23 through 4.8.3.1, enabling a stored XSS attack that could compromise user data and lead to unauthorized actions within the application.
Affected Version(s)
DivvyDrive 4.8.2.23
