CVE-2026-6622 | BichitroGan ISP Billing Software 2025.3.20 Customer edit cross site scripting

A vulnerability labeled as problematic has been found in BichitroGan ISP Billing Software 2025.3.20. This affects an unknown function of the file /?_route=customers/edit/ of the component Customer Handler. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-6622. The attack can be executed remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More