Flexmls® IDX Plugin, CVE-2026-25369

CVE, Research URL: CVE-2026-25369
Home page URL: Security reports for Flexmls® IDX Plugin
Application: Flexmls® IDX Plugin
Published on: Mar 16, 2026
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Flexmls Flexmls® IDX allows Reflected XSS.This issue affects Flexmls® IDX: from n/a through 3.15.9.
Affected versions: max 3.15.9.
Status: vulnerable