Cross-Site Scripting Vulnerability in DivvyDrive by DivvyDrive Information Technologies Inc.
CVE-2026-6283

5.4MEDIUM

What is CVE-2026-6283?

An improper neutralization of input during web page generation has been identified in DivvyDrive. This vulnerability could allow malicious users to execute scripts in the context of a user's browser, leading to potential data theft or manipulation. The affected versions include anything from v4.8.2.23 prior to v4.8.3.1, necessitating prompt updates to secure the application.

Affected Version(s)

DivvyDrive v.4.8.2.23

References

CVSS V3.1

Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

OÄźulcan Hami GĂśL
.