CVE-2026-3054

Vulnerability

CVE-2026-3054

A vulnerability was identified in Alinto SOGo 5.12.3/5.12.4. This impacts an unknown function. The manipulation of the argument hint leads to cross site scripting. The attack can be initiated remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

References

launchpad.net/ubuntu-cve-tracker: https://vuldb.com/?ctiid.347412
launchpad.net/ubuntu-cve-tracker: https://vuldb.com/?id.347412
launchpad.net/ubuntu-cve-tracker: https://vuldb.com/?submit.757609
launchpad.net/ubuntu-cve-tracker: https://www.cve.org/CVERecord?id=CVE-2026-3054

severitym

medium

type: vendor

source: launchpad.net/ubuntu-cve-tracker

published: 2026-02-24 03:16:00

Detection

No detection criteria available for this vulnerability.

Data Sources

Ubuntu CVE Tracker
ubuntu-cve-tracker
- raw: ghcr.io/vulsio/vuls-data-db:vuls-data-raw-ubuntu-cve-tracker
- extracted: ghcr.io/vulsio/vuls-data-db:vuls-data-extracted-ubuntu-cve-tracker

FutureVuls|GitHub