Loading market data...
← Back to CVE feed

CVE-2026-34890

MEDIUM CVSS 6.5 View on NVD ↗

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mark O’Donnell MSTW League Manager allows DOM-Based XSS.This issue affects MSTW League Manager: from n/a through 2.10.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

References

Published: Apr 02, 2026 13:16 UTC Modified: Apr 02, 2026 13:16 UTC