Description
Guardian language-system fails to sanitize the name GET parameter before outputting it into an HTML input value attribute in designer.php (line 57). An authenticated attacker can craft a URL containing script tags that execute in the victim's browser session.
Published: 2026-07-01
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Guardian Language‑System disallows proper sanitization of the URL GET parameter named "name" before placing it into an <input> value attribute in designer.php. An attacker who can log in as an authenticated user can craft a link that contains script tags or other malicious payloads in the name parameter. When the victim opens that link in their browser session, the payload is executed, allowing the attacker to hijack the user’s session, deface the interface, or read other session data. This weakness grows to a client‑side XSS classified as CWE‑79, impacting confidentiality, integrity, and availability only within the victim’s authenticated session.

Affected Systems

The vulnerability affects the Guardian Language‑System application. No specific version range is listed in the CNA data, so any installed instance that includes designer.php and does not apply the patch is potentially vulnerable.

Risk and Exploitability

The CVSS score of 4.8 indicates moderate risk. EPSS is undefined, implying low exploit probability at the moment, and the flaw is not listed in CISA KEV catalog. Attackers must already be authenticated and able to request designer.php, making exploitation a privilege‑limited, client‑side attack. While the impact is limited to the victim’s session, any compromised user could be used for broader malicious activity by collecting credentials or performing further actions on behalf of the user.

Generated by OpenCVE AI on July 2, 2026 at 15:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check the Guardian Language‑System version you are running and download the latest release that contains the XSS fix from the vendor’s site.
  • Apply the vendor’s patch or upgrade to the latest version that addresses the unsanitized name parameter in designer.php.
  • If a patch is not yet available and the feature is required, modify designer.php to escape or otherwise sanitize the 'name' GET parameter before embedding it in the input value attribute.
  • Deploy an application‑layer filtering rule or WAF rule that blocks or sanitizes script tags in the name parameter to provide a temporary guard until the patch is applied.

Generated by OpenCVE AI on July 2, 2026 at 15:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 01 Jul 2026 16:30:00 +0000

Type Values Removed Values Added
Description Guardian language-system fails to sanitize the name GET parameter before outputting it into an HTML input value attribute in designer.php (line 57). An authenticated attacker can craft a URL containing script tags that execute in the victim's browser session.
Title Guardian Language-System XSS via name Parameter in designer.php
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 4.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-07-01T17:52:50.669Z

Reserved: 2026-03-25T18:43:09.825Z

Link: CVE-2026-34096

cve-icon Vulnrichment

Updated: 2026-07-01T17:52:46.386Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-02T16:00:12Z

Weaknesses
  • CWE-79

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')