A vulnerability was found in reconurge flowsint up to 1.2.2 . It has been rated as problematic . Affected is an unknown function of the component Description Handler . The manipulation leads to cross site scripting. This vulnerability is listed as CVE-2026-42159 . The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is advised.