A vulnerability was found in DFIR-IRIS up to 2.4.27 . It has been rated as problematic . Affected is an unknown function. This manipulation causes cross site scripting. This vulnerability is registered as CVE-2026-42538 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.