VYPR

A3factura

by Actualbudget

CVEs (4)

  • CVE-2026-2680Feb 26, 2026
    risk 0.00cvss epss 0.00

    Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es/#/incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.

  • CVE-2026-2679Feb 26, 2026
    risk 0.00cvss epss 0.00

    Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolterskluwer.es/#/incomes/salesInvoices' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.

  • CVE-2026-2678Feb 26, 2026
    risk 0.00cvss epss 0.00

    Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura-app.wolterskluwer.es/#/incomes/customers' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.

  • CVE-2026-2677Feb 26, 2026
    risk 0.00cvss epss 0.00

    Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer.es/#/incomes/representatives-management' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser.