Vulnerabilities in MGeurts
3 resultsCVE-2026-39355CRITICALGenealogy is Missing Authorization in `TeamController::transferOwnership()` Allows Any Authenticated User to Hijack Any Team (Broken Access Control)EPSS 0.3%CVE-2025-55287HIGHGenealogy has a stored XSS vulnerabilityEPSS 0.3%CVE-2025-55288MEDIUMGenealogy has a Reflected XSS VulnerabilityEPSS 0.3%