CVE-2024-2726 Information

Description

Stored Cross-Site Scripting (Stored-XSS) vulnerability affecting the CIGESv2 system allowing an attacker to execute and store malicious javascript code in the application form without prior registration.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-cigesv2-system