A vulnerability described as critical has been identified in Simple SA Wirtualna Uczelnia up to wu#2016.437.295#0#20260327_105545 . This impacts the function redirectToUrl of the component Endpoint . Such manipulation of the argument redirectUrlParameter leads to improper neutralization of special elements used in a template engine. This vulnerability is traded as CVE-2026-34906 . The attack may be launched remotely. There is no exploit available.