4 matches found
CVE-2025-59467
A Cross-Site Scripting XSS vulnerability in the UCRM Argentina AFIP invoices Plugin v1.2.0 and earlier could allow privilege escalation if an Administrator is tricked into visiting a crafted malicious page. This plugin is disabled by default. Affected Products: UCRM Argentina AFIP invoices Plugin...
CVE-2025-59467
Summary: CVE-2025-59467 is an XSS flaw in the UCRM Argentina AFIP invoices Plugin (versions ≤ 1.2.0). The vulnerability could enable privilege escalation when an Administrator is tricked into visiting a crafted page. The plugin is disabled by default. Impact (as stated): privilege escalation with...
CVE-2025-59467
A Cross-Site Scripting XSS vulnerability in the UCRM Argentina AFIP invoices Plugin v1.2.0 and earlier could allow privilege escalation if an Administrator is tricked into visiting a crafted malicious page. This plugin is disabled by default. Affected Products: UCRM Argentina AFIP invoices Plugin...
PT-2023-31956 · Bytecode Alliance · Wasm-Micro-Runtime
Name of the Vulnerable Software and Affected Versions: Bytecode Alliance wasm-micro-runtime versions prior to 1.3.0 Description: The issue arises from the mishandling of push pop frame ref offset, leading to a "double free or corruption" error for a valid WebAssembly module. Recommendations: For...