CVE-2026-14261

CVE-2026-14261CVE-2026-14261

Description

A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reinstallation through the /setup/ folder, enabling attackers to reinstall the service to a remote database they control.

Scoring

CVSS 9.1 ()
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Last modified2026-07-09
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.