CVE-2026-30919

facileManager Affected by Stored Cross-Site Scripting (XSS)

Description

facileManager is a modular suite of web apps built with the sysadmin in mind. Prior to 6.0.4 , stored XSS (also known as persistent or second-order XSS) occurs when an application receives data from an untrusted source and includes that data in its subsequent HTTP responses in an unsafe manner. This vulnerability was found in the fmDNS module. This vulnerability is fixed in 6.0.4.

INFO

Published Date :

2026-03-09T22:54:49.645Z

Last Modified :

2026-03-10T14:17:35.239Z

Source :

GitHub_M

AFFECTED PRODUCTS

The following products are affected by CVE-2026-30919 vulnerability.

Vendors	Products
Facilemanager	Facilemanager

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-30919.

URL	Resource
https://github.com/facileManager/facileManager/security/advisories/GHSA-2339-h9qw-q6vf

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact