MEDIUM
RD Station Conversas
CVE published 2026-07-13
CVE-2026-4765
A Stored Cross-Site Scripting (XSS) vulnerability exists in the RD Station Conversas chat. The vulnerability is located in the 'name' parameter of the initialization process, where user input is not properly sanitized. This allows an attacker to execute arbitrary JavaScript code within the context of the application. The impact is not limited to self-exploitation, as the malicious script also executes in [truncated]