A vulnerability was found in Allegra 8.1.6.22 and classified as problematic . The affected element is the function downloadAttachment . The manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2026-11443 . The attack may be launched remotely. There is no exploit available.