CVE-2026-2680 | A3factura Web Platform 4.111.2-rev.1 salesDeliveryNotes customerVATNumber cross site scripting

A vulnerability described as problematic has been identified in A3factura Web Platform 4.111.2-rev.1. This affects an unknown function of the file a3factura-app.wolterskluwer.es/#/incomes/salesDeliveryNotes. The manipulation of the argument customerVATNumber results in cross site scripting.

This vulnerability is reported as CVE-2026-2680. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More