Lucene search
Veracode Vulnerability DatabaseVERACODE:35980HistoryJun 14, 2022 - 9:19 a.m.
Cross-site Scripting (XSS)
2022-06-1409:19:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
cross-site scripting
facturascripts
vulnerability
sanitization
username field
malicious script
login user not found message
EPSS
0.001
Percentile
30.0%
facturascripts/facturascripts is vulnerable to cross site scripting. The vulnerability exists due to a lack of sanitization of the username field allowing an attacker to input maliciously crafted script via the username field when showing ‘login-user-not-found’ message.
Related
osv
osv
Cross site scripting in facturascripts
2022-06-14 00:00:37
CVE-2022-2066
2022-06-13 13:15:13
cve
cve
CVE-2022-2066
2022-06-13 13:15:13
prion
prion
Cross site scripting
2022-06-13 13:15:00
cvelist
cvelist
github
github
Cross site scripting in facturascripts
2022-06-14 00:00:37
cnvd
cnvd
FacturaScripts Cross-Site Scripting Vulnerability
2022-06-15 00:00:00
nvd
nvd
CVE-2022-2066
2022-06-13 13:15:13
huntr
huntr
Refelect XSS in facturascripts
2022-04-27 07:52:02