facturascripts/facturascripts is vulnerable to cross-site scripting. The vulnerability exists due to the lack of sanitization in the descripcion
parameter in the test
function of Cuenta.php
, allowing an attacker to inject and execute malicious taint
data.
CPE | Name | Operator | Version |
---|---|---|---|
facturascripts/facturascripts | le | v2022.08 | |
facturascripts/facturascripts | le | v2022.08 |