A vulnerability identified as problematic has been detected in Apache OFBiz up to 24.09.05 . Impacted is an unknown function. Performing a manipulation results in cross site scripting. This vulnerability is identified as CVE-2026-31906 . The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.