A vulnerability has been found in Octopus Deploy Octopus Server up to 2025.4.10677/2026.1.11450/2026.2.13113 and classified as problematic . This affects an unknown function. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2026-8296 . The attack is possible to be carried out remotely. No exploit exists. The affected component should be upgraded.