XSS in Intermark It Webcontrol Cms
CVE-2026-6954
Cross-Site Scripting (XSS) vulnerability in Intermark IT's WebControl CMS v3.5. This vulnerability allows an attacker to execute JavaScript code or inject a dynamic iframe into the victim’s browser by sending a malicious URL via the 'urlDe…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.004 (28.5th percentile) — read the EPSS interpretation.
Affected products
- Intermark It Webcontrol Cms — versions 0