CVE-2026-5790 | Stel Order up to 3.25.1 /app/FrontController legalName/employeeID cross site scripting

A vulnerability was found in Stel Order up to 3.25.1. It has been rated as problematic. This impacts an unknown function of the file /app/FrontController. Performing a manipulation of the argument legalName/employeeID results in cross site scripting.

This vulnerability is reported as CVE-2026-5790. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More