A vulnerability classified as problematic was found in IngEstate Server 11.14.0 . Affected by this vulnerability is an unknown functionality of the component Software Package List Page . Such manipulation of the argument Release note leads to cross site scripting. This vulnerability is referenced as CVE-2026-30082 . It is possible to launch the attack remotely. No exploit is available.