Skip to main content

Map

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-0521 MEDIUM POC This Month

Reflected XSS in TYDAC AG MAP+ 3.4.0 PDF export allows unauthenticated attackers to execute arbitrary JavaScript in victim browsers through malicious URLs, with public exploit code available. An attacker can deliver such links via email or social engineering to compromise user sessions and steal sensitive data. No patch is currently available.

XSS Map
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2026-0521
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Reflected XSS in TYDAC AG MAP+ 3.4.0 PDF export allows unauthenticated attackers to execute arbitrary JavaScript in victim browsers through malicious URLs, with public exploit code available. An attacker can deliver such links via email or social engineering to compromise user sessions and steal sensitive data. No patch is currently available.

XSS Map
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy