Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-2677 | 1 Wolterskluwer | 1 A3factura | 2026-03-02 | N/A | 6.1 MEDIUM |
|
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer.es/#/incomes/representatives-management' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.
|
|||||
| CVE-2026-2678 | 1 Wolterskluwer | 1 A3factura | 2026-03-02 | N/A | 6.1 MEDIUM |
|
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura-app.wolterskluwer.es/#/incomes/customers' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.
|
|||||
| CVE-2026-2679 | 1 Wolterskluwer | 1 A3factura | 2026-03-02 | N/A | 6.1 MEDIUM |
|
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolterskluwer.es/#/incomes/salesInvoices' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.
|
|||||
| CVE-2026-2680 | 1 Wolterskluwer | 1 A3factura | 2026-03-02 | N/A | 6.1 MEDIUM |
|
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es/#/incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.
|
|||||