A vulnerability, which was classified as problematic , has been found in kantorge yaffa 2.0.0 . Affected by this issue is some unknown functionality of the component Add Account Group . The manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2025-70844 . Remote exploitation of the attack is possible. No exploit is available.