Flowmon ADS Security Risk: Malicious Link Attack

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.6

Flowmon ADS Security Risk: Malicious Link Attack

CVE-2026-2513

Summary

Flowmon ADS versions 12.5.4 and earlier, and 13.0.2 and earlier, may be vulnerable to a security risk if an administrator clicks a malicious link. This could lead to unintended actions within the tool. To protect your system, update to version 12.5.5 or 13.0.3 or later.

Original title

A vulnerability exists in Progress Flowmon ADS versions prior to 12.5.5 and 13.0.3, whereby an administrator who clicks a malicious link provided by an attacker may inadvertently trigger unintended...

Original description

nvd CVSS4.0 8.6

Vulnerability type

CWE-79 Cross-site Scripting (XSS)

https://community.progress.com/s/article/CVE-2026-2513-Progress-Flowmon-ADS

Published: 12 Mar 2026 · Updated: 14 Mar 2026 · First seen: 12 Mar 2026