2 matches found
CVE-2022-1457 Store XSS in title parameter executing at EditUser Page & EditProducto page in neorazorx/facturascripts
Store XSS in title parameter executing at EditUser Page & EditProducto page in GitHub repository neorazorx/facturascripts prior to 2022.04. Cross-site scripting attacks can have devastating consequences. Code injected into a vulnerable application can exfiltrate data or install malware on the...
CVE-2022-1457
CVE-2022-1457 corresponds to a stored XSS vulnerability in the FacturaScripts project neorazorx/facturascripts, affecting the title parameter on EditUser and EditProducto pages prior to 2022.04. The issue allows an attacker to inject scripts that can exfiltrate data or compromise user sessions, w...