A vulnerability was found in FOSSBilling up to 0.7.x . It has been rated as problematic . Affected by this vulnerability is an unknown functionality of the file /api/system of the component API Endpoint . The manipulation leads to improper neutralization of special elements used in a template engine. This vulnerability is documented as CVE-2026-28496 . The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is advised.