Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2026/02/10 1:23 p.m.4 views

CVE-2026-1959

Stored Cross-Site Scripting XSS vulnerability in Loggro Pymes, via the 'descripción' parameter in the '/loggrodemo/jbrain/MaestraCuentasBancarias' endpoint...

5.1CVSS5.4AI score0.00403EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/09 11:41 a.m.24 views

CVE-2026-1959 Stored Cross-Site Scripting (XSS) vulnerability in Loggro Pymes

Stored Cross-Site Scripting XSS vulnerability in Loggro Pymes, via the 'descripción' parameter in the '/loggrodemo/jbrain/MaestraCuentasBancarias' endpoint...

5.1CVSS0.00403EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/09 11:41 a.m.3 views

CVE-2026-1959

Stored Cross-Site Scripting XSS vulnerability in Loggro Pymes, via the 'descripción' parameter in the '/loggrodemo/jbrain/MaestraCuentasBancarias' endpoint...

5.1CVSS5.4AI score0.00403EPSS
Exploits0References2
CVE
CVE
added 2026/02/09 11:41 a.m.14 views

CVE-2026-1959

Stored Cross-Site Scripting (XSS) vulnerability in Loggro Pymes, exploitable via the 'descripción' parameter in the '/loggrodemo/jbrain/MaestraCuentasBancarias' endpoint. The CVE entry indicates a MEDIUM impact (CVSS 4.0: base score 5.1; UI:A; AV:N; AC:L; PR:N; VI/DI/AI: NONE/LOW/NONE). Connected...

5.1CVSS5.4AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/19 12:20 p.m.12 views

CVE-2025-41349

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in '/WinplusPortal/ws/sWinplus...

5.4CVSS5.6AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/19 12:20 p.m.14 views

CVE-2025-41350

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in...

5.4CVSS5.6AI score0.00233EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/18 12:30 p.m.7 views

EUVD-2025-197975

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in '/WinplusPortal/ws/sWinplus...

5.1CVSS5.1AI score0.00283EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/18 12:30 p.m.5 views

EUVD-2025-197977

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in...

5.1CVSS5.1AI score0.00233EPSS
Exploits0References2
OSV
OSV
added 2025/11/18 12:15 p.m.6 views

CVE-2025-41350

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in...

5.4CVSS5.9AI score0.00233EPSS
Exploits0References1
NVD
NVD
added 2025/11/18 12:15 p.m.7 views

CVE-2025-41350

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in...

5.4CVSS0.00233EPSS
Exploits0References1
NVD
NVD
added 2025/11/18 12:15 p.m.5 views

CVE-2025-41349

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in '/WinplusPortal/ws/sWinplus...

5.4CVSS0.00283EPSS
Exploits0References1
OSV
OSV
added 2025/11/18 12:15 p.m.4 views

CVE-2025-41349

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in '/WinplusPortal/ws/sWinplus...

5.4CVSS5.9AI score0.00283EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/18 11:27 a.m.4 views

CVE-2025-41350 Stored Cross-Site Scripting (XSS) in WinPlus by Informática del Este

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in...

5.1CVSS5.2AI score0.00233EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/11/18 11:27 a.m.3 views

CVE-2025-41350

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in...

5.4CVSS5.6AI score0.00233EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/11/18 11:27 a.m.11 views

CVE-2025-41350 Stored Cross-Site Scripting (XSS) in WinPlus by Informática del Este

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in...

5.1CVSS0.00233EPSS
Exploits0References1
CVE
CVE
added 2025/11/18 11:26 a.m.14 views

CVE-2025-41349

CVE-2025-41349 affects WinPlus v24.11.27 by Informática del Este. A Stored XSS flaw arises from insufficient validation of the descripcion parameter sent via POST to the API endpoint /WinplusPortal/ws/sWinplus.svc/json/savesolpla_post, exploitable by a remote attacker against an authenticated use...

5.4CVSS5.2AI score0.00283EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/18 11:26 a.m.8 views

CVE-2025-41349 Stored Cross-Site Scripting (XSS) in WinPlus by Informática del Este

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in '/WinplusPortal/ws/sWinplus...

5.1CVSS0.00283EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/18 11:26 a.m.3 views

CVE-2025-41349 Stored Cross-Site Scripting (XSS) in WinPlus by Informática del Este

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in '/WinplusPortal/ws/sWinplus...

5.1CVSS5.2AI score0.00283EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/11/18 11:26 a.m.2 views

CVE-2025-41349

Stored Cross-site Scripting XSSvylnerability type in WinPlus v24.11.27 byInformática del Este that consist of an stored XSS of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'descripcion' parameter in '/WinplusPortal/ws/sWinplus...

5.4CVSS5.6AI score0.00283EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.5 views

PT-2025-47300

Name of the Vulnerable Software and Affected Versions WinPlus version 24.11.27 Description A stored Cross-site Scripting XSS issue exists in WinPlus version 24.11.27 due to insufficient validation of user-supplied data. This allows a remote attacker to send a malicious query to an authenticated...

5.1CVSS5.9AI score0.00233EPSS
Exploits0References4
Rows per page
Query Builder