Vulnerability Details CVE-2026-33739
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Prior to 1.5.10.1812, the listing tables on multiple management pages (Host, Storage, Group, Image, Printer, Snapin) are vulnerable to Stored Cross-Site Scripting (XSS), due to insufficient server-side parameter sanitization in record creations/updates and a lack of HTML escaping in listing tables. Version 1.5.10.1812 patches the issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.2%
CVSS Severity
CVSS v3 Score 5.7
Products affected by CVE-2026-33739
-
cpe:2.3:a:fogproject:fogproject:-
-
cpe:2.3:a:fogproject:fogproject:1.3.0
-
cpe:2.3:a:fogproject:fogproject:1.3.1
-
cpe:2.3:a:fogproject:fogproject:1.3.2
-
cpe:2.3:a:fogproject:fogproject:1.3.3
-
cpe:2.3:a:fogproject:fogproject:1.3.4
-
cpe:2.3:a:fogproject:fogproject:1.3.5
-
cpe:2.3:a:fogproject:fogproject:1.4.0
-
cpe:2.3:a:fogproject:fogproject:1.4.1
-
cpe:2.3:a:fogproject:fogproject:1.4.2
-
cpe:2.3:a:fogproject:fogproject:1.4.3
-
cpe:2.3:a:fogproject:fogproject:1.4.4
-
cpe:2.3:a:fogproject:fogproject:1.5.0
-
cpe:2.3:a:fogproject:fogproject:1.5.1
-
cpe:2.3:a:fogproject:fogproject:1.5.10
-
cpe:2.3:a:fogproject:fogproject:1.5.10.15
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1565
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1566
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1593
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1615
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1622
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1629
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1634
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1639
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1650
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1655
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1660
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1667
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1673
-
cpe:2.3:a:fogproject:fogproject:1.5.10.1698
-
cpe:2.3:a:fogproject:fogproject:1.5.10.30
-
cpe:2.3:a:fogproject:fogproject:1.5.10.41
-
cpe:2.3:a:fogproject:fogproject:1.5.10.41.2
-
cpe:2.3:a:fogproject:fogproject:1.5.10.41.3
-
cpe:2.3:a:fogproject:fogproject:1.5.10.47
-
cpe:2.3:a:fogproject:fogproject:1.5.10.74
-
cpe:2.3:a:fogproject:fogproject:1.5.2
-
cpe:2.3:a:fogproject:fogproject:1.5.3
-
cpe:2.3:a:fogproject:fogproject:1.5.4
-
cpe:2.3:a:fogproject:fogproject:1.5.5
-
cpe:2.3:a:fogproject:fogproject:1.5.6
-
cpe:2.3:a:fogproject:fogproject:1.5.7
-
cpe:2.3:a:fogproject:fogproject:1.5.8
-
cpe:2.3:a:fogproject:fogproject:1.5.9