2 matches found
CVE-2026-30251
CVE-2026-30251 is a reflected XSS vulnerability in Interzen Consulting S.r.l. ZenShare Suite v17.0. The issue occurs in the login_newpwd.php endpoint, where a crafted value injected into the codice_azienda parameter can execute arbitrary JavaScript in the user’s browser. Connected sources confirm...
CVE-2026-30252
CVE-2026-30252 describes multiple reflected XSS vulnerabilities in the login.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0. The issue allows an attacker to execute arbitrary Javascript in a user’s browser via crafted URLs that inject payloads into the codice_azienda and red_url p...