๐Ÿ” CVE Alert

CVE-2026-5005

MEDIUM 5.4

Stored XSS in Twiser's OKRs & Goals

CVSS Score
5.4
EPSS Score
0.1%
EPSS Percentile
3th

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Twiser Informatics Technology Consulting, Trade and Education Inc. OKRs & Goals allows Stored XSS. This issue affects OKRs & Goals: from 28220 before 28398.

CWE CWE-79
Vendor twiser informatics technology consulting, trade and education inc.
Product okrs & goals
Published Jul 9, 2026
Last Updated Jul 14, 2026
Stay Ahead of the Next One

Get instant alerts for twiser informatics technology consulting, trade and education inc. okrs & goals

Be the first to know when new medium vulnerabilities affecting twiser informatics technology consulting, trade and education inc. okrs & goals are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Affected Versions

Twiser Informatics Technology Consulting, Trade and Education Inc. / OKRs & Goals
28220 < 28398

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0524

Credits

Yunus KARA Sarp Dora YONDEN Abdurrahman Emre OZKOK