Home

Description

Cross Site Scripting vulnerability in Key Systems Inc Global Facilities Management Software v. 20230721a allows a remote attacker to execute arbitrary code via the selectgroup and gn parameters on the /?Function=Groups endpoint.

PUBLISHED Reserved 2026-02-16 | Published 2026-02-20 | Updated 2026-02-23 | Assigner mitre

References

github.com/...erability-disclosures/tree/main/CVE-2026-26724

cve.org (CVE-2026-26724)

nvd.nist.gov (CVE-2026-26724)

Download JSON