A vulnerability categorized as problematic has been discovered in YAFNET YetAnotherForum.NET up to 3.2.11/4.0.4 . This impacts an unknown function. The manipulation results in cross site scripting. This vulnerability is reported as CVE-2026-43939 . The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.