Vulnerabilities in neorazorx
21 resultsCVE-2022-1715CRITICALAccount Takeover in neorazorx/facturascriptsEPSS 1.3%CVE-2025-69210LOWFacturaScripts vulnerable to Stored Cross-Site Scripting (XSS) via XML File UploadEPSS 1.0%CVE-2022-2066HIGHCross-site Scripting (XSS) - Reflected in neorazorx/facturascriptsEPSS 0.9%CVE-2022-1571CRITICALCross-site scripting - Reflected in Create Subaccount in neorazorx/facturascriptsEPSS 0.8%CVE-2022-1514CRITICALStored XSS via upload plugin functionality in zip format in neorazorx/facturascriptsEPSS 0.7%CVE-2022-1988MEDIUMCross-site Scripting (XSS) - Generic in neorazorx/facturascriptsEPSS 0.7%CVE-2022-1457CRITICALStore XSS in title parameter executing at EditUser Page & EditProducto page in neorazorx/facturascriptsEPSS 0.7%CVE-2022-1682CRITICALReflected Xss using url based payload in neorazorx/facturascriptsEPSS 0.7%CVE-2022-2016MEDIUMCross-site Scripting (XSS) - Reflected in neorazorx/facturascriptsEPSS 0.6%CVE-2022-2065HIGHCross-site Scripting (XSS) - Stored in neorazorx/facturascriptsEPSS 0.6%CVE-2026-27891HIGHRemote Code Execution (RCE) via Zip Slip in Plugin Upload MechanismEPSS 0.5%CVE-2026-25513HIGHFacturaScripts has SQL Injection vulnerability in API ORDER BY ClauseEPSS 0.5%CVE-2026-25514HIGHFacturaScripts has SQL Injection vulnerability in Autocomplete ActionsEPSS 0.5%CVE-2026-23997HIGHFacturaScripts has a Stored Cross-Site Scripting (XSS) in "Observations" field via History ViewEPSS 0.4%CVE-2026-32699MEDIUMFacturaScripts unauthorized modification of immutable nick field via EditUser controllerEPSS 0.3%CVE-2026-23476MEDIUMFacturaScripts Affected by Reflected XSSEPSS 0.3%CVE-2026-42878MEDIUMFacturaScripts: Unauthenticated phpinfo() Disclosure via Installer Endpoint in FacturaScriptsEPSS 0.2%CVE-2026-42879MEDIUMFacturaScripts: Authenticated Remote Code Execution (RCE) via GIF Image Upload in Product ImagesEPSS 0.2%CVE-2026-27892MEDIUMFacturaScripts: Unstripped Image Metadata (EXIF) Leakage via Library Module File Upload/DownloadEPSS 0.2%CVE-2026-42877MEDIUMFacturaScripts: Stored XSS via product reference in sales/purchasesEPSS 0.2%