A vulnerability classified as problematic was found in MaxSite CMS 109.2 . This vulnerability affects the function admin_page . Such manipulation leads to cross site scripting. This vulnerability is listed as CVE-2026-37700 . The attack may be performed from remote. There is no available exploit.