Cross-site scripting - Reflected in Create Subaccount in GitHub repository neorazorx/facturascripts prior to 2022.07. This vulnerability can be arbitrarily executed javascript code to steal user’cookie, perform HTTP request, get content of same origin
page, etc …
CPE | Name | Operator | Version |
---|---|---|---|
facturascripts | lt | 2022.07 |