Skip to main content

Plunet Plunet BusinessManager CVE-2026-2337

Cross-site Scripting (XSS) (CWE-79)
2026-02-11 64c5ae8f-7972-4697-86a0-7ada793ac795

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 22:02 vuln.today
CVE Published
Feb 11, 2026 - 14:16 nvd
N/A

DescriptionCVE.org

A vulnerability in Plunet Plunet BusinessManager allows session hijacking, data theft, unauthorized actions on behalf of the user.This issue affects Plunet BusinessManager: 10.15.1.

Analysis

A vulnerability in Plunet Plunet BusinessManager allows session hijacking, data theft, unauthorized actions on behalf of the user.This issue affects Plunet BusinessManager: 10.15.1.

Technical ContextAI

Classified as CWE-79 (Cross-site Scripting (XSS)). Affects Plunet Plunet BusinessManager. A vulnerability in Plunet Plunet BusinessManager allows session hijacking, data theft, unauthorized actions on behalf of the user.This issue affects Plunet BusinessManager: 10.15.1.

Affected ProductsAI

Product: Plunet Plunet BusinessManager.

RemediationAI

Monitor vendor advisories for a patch. Implement output encoding and Content Security Policy headers.

Share

CVE-2026-2337 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy