A vulnerability described as problematic has been identified in Digiwin EasyFlow .NET up to 8.1.4 . The affected element is an unknown function. Executing a manipulation can lead to cross site scripting. The identification of this vulnerability is CVE-2026-12580 . The attack may be launched remotely. There is no exploit available.