CVE-2026-2737
Possibility of unintended actions when an administrator clicks a malicious link in the Progress Flowmon web application
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
A vulnerability exists in Progress Flowmon versions prior to 12.5.8 and 13.0.6, whereby an administrator who clicks a malicious link provided by an attacker may inadvertently trigger unintended actions within their authenticated web session.
| CWE | CWE-79 |
| Vendor | progress software |
| Product | flowmon |
| Published | Apr 2, 2026 |
| Last Updated | Apr 3, 2026 |
Stay Ahead of the Next One
Get instant alerts for progress software flowmon
Be the first to know when new unknown vulnerabilities affecting progress software flowmon are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Progress Software / Flowmon
Flowmon 12 versions prior to 12.5.8 Flowmon 13 versions prior to 13.0.6