All 5 CVE vulnerabilities found in facturascripts, with AI-generated Chinese analysis, references, and POCs.
Vendor: NeoRazorX
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2026-25513 | FacturaScripts has SQL Injection vulnerability in API ORDER BY Clause CWE-89 | 8.8AI | HighAI | 2026-02-04 |
| CVE-2026-25514 | FacturaScripts has SQL Injection vulnerability in Autocomplete Actions CWE-20 | 6.5AI | MediumAI | 2026-02-04 |
| CVE-2026-23476 | FacturaScripts Affected by Reflected XSS CWE-79 | 5.4 | Medium | 2026-02-02 |
| CVE-2026-23997 | FacturaScripts has a Stored Cross-Site Scripting (XSS) in "Observations" field via History View CWE-79 | 8.0 | High | 2026-02-02 |
| CVE-2025-69210 | FacturaScripts vulnerable to Stored Cross-Site Scripting (XSS) via XML File Upload CWE-79 | 5.4 | - | 2025-12-30 |
All 5 known CVE vulnerabilities affecting facturascripts with full Chinese analysis, references, and POCs where available.