Lucene search
K

40 matches found

RedhatCVE
RedhatCVE
added 2026/02/27 7:45 p.m.4 views

CVE-2026-2677

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/representatives-management' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.3AI score0.00164EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/27 7:45 p.m.7 views

CVE-2026-2679

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolterskluwer.es//incomes/salesInvoices' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.3AI score0.00164EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/27 7:45 p.m.6 views

CVE-2026-2678

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/customers' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.3AI score0.00164EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/27 7:45 p.m.6 views

CVE-2026-2680

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.3AI score0.00175EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/26 3:30 p.m.6 views

EUVD-2026-8852

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

4.8CVSS6AI score0.00175EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/26 3:30 p.m.6 views

EUVD-2026-8849

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/representatives-management' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

4.8CVSS6AI score0.00164EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/26 3:30 p.m.5 views

EUVD-2026-8850

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/customers' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

4.8CVSS6AI score0.00164EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/26 3:30 p.m.5 views

EUVD-2026-8851

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolterskluwer.es//incomes/salesInvoices' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

4.8CVSS6AI score0.00164EPSS
Exploits0References2
OSV
OSV
added 2026/02/26 1:16 p.m.12 views

CVE-2026-2679

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolterskluwer.es//incomes/salesInvoices' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.1AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2026/02/26 1:16 p.m.8 views

CVE-2026-2680

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.1AI score0.00175EPSS
Exploits0References1
NVD
NVD
added 2026/02/26 1:16 p.m.8 views

CVE-2026-2679

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolterskluwer.es//incomes/salesInvoices' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS0.00164EPSS
Exploits0References1
NVD
NVD
added 2026/02/26 1:16 p.m.7 views

CVE-2026-2680

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS0.00175EPSS
Exploits0References1
OSV
OSV
added 2026/02/26 1:16 p.m.7 views

CVE-2026-2678

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/customers' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.2AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2026/02/26 1:16 p.m.6 views

CVE-2026-2677

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/representatives-management' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6.2AI score0.00164EPSS
Exploits0References1
NVD
NVD
added 2026/02/26 1:16 p.m.10 views

CVE-2026-2677

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/representatives-management' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS0.00164EPSS
Exploits0References1
NVD
NVD
added 2026/02/26 1:16 p.m.11 views

CVE-2026-2678

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura-app.wolterskluwer.es//incomes/customers' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS0.00164EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/26 12:18 p.m.5 views

CVE-2026-2680

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

6.1CVSS6AI score0.00175EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/26 12:18 p.m.5 views

CVE-2026-2680 Multiple vulnerabilities in A3factura software

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

4.8CVSS5.9AI score0.00175EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/26 12:18 p.m.23 views

CVE-2026-2680 Multiple vulnerabilities in A3factura software

Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...

4.8CVSS0.00175EPSS
Exploits0References1
CVE
CVE
added 2026/02/26 12:18 p.m.13 views

CVE-2026-2680

CVE-2026-2680 describes a Reflected XSS in the A3factura web platform, affecting the endpoint a3factura-app.wolterskluwer.es/#/incomes/salesDeliveryNotes with the vulnerable parameter customerVATNumber . The issue could allow an attacker to execute arbitrary code in a victim’s browser. The CVSSv4...

6.1CVSS6AI score0.00175EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder