CVE-2026-38936 | diskover-community up to 2.3.5 public/selectindices.php namecontains cross site scripting

A vulnerability identified as problematic has been detected in diskover-community up to 2.3.5. This affects an unknown function of the file public/selectindices.php. This manipulation of the argument namecontains causes cross site scripting.

This vulnerability is handled as CVE-2026-38936. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More