CVE-2026-4772
MEDIUM
NVD
CVSS Score
5.4
Severity
MEDIUM
Published
Jul 02, 2026
Vendor
unknown
Description
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in TR7 Cyber Defense Inc. WAF-ASP allows Stored XSS. This issue affects WAF-ASP: from v1.0.324.900 before v1.4.0.117.