CVE-2026-2680
- EPSS 0.03%
- Veröffentlicht 26.02.2026 12:18:48
- Zuletzt bearbeitet 02.03.2026 16:32:48
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es/#/incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's b...
CVE-2026-2679
- EPSS 0.03%
- Veröffentlicht 26.02.2026 12:18:13
- Zuletzt bearbeitet 02.03.2026 16:58:13
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolterskluwer.es/#/incomes/salesInvoices' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.
CVE-2026-2678
- EPSS 0.03%
- Veröffentlicht 26.02.2026 12:17:17
- Zuletzt bearbeitet 02.03.2026 17:12:37
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura-app.wolterskluwer.es/#/incomes/customers' endpoint, which could allow an attacker to execute arbitrary code in the victim's brows...
CVE-2026-2677
- EPSS 0.03%
- Veröffentlicht 26.02.2026 12:16:03
- Zuletzt bearbeitet 02.03.2026 17:15:51
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer.es/#/incomes/representatives-management' endpoint, which could allow an attacker to execute arbitrary code in the victim's browse...