VIR Vulnerability Intelligence Relay

Package impact

php Packagist / facturascripts/facturascripts

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-27891 high 7.2 7.2 21d ago FacturaScripts Vulnerable to Remote Code Execution (RCE) via Zip Slip in Plugin Upload Mechanism php
CVE-2026-27964 low 3.9 3.9 21d ago FacturaScripts vulnerable to Reflected Cross-Site Scripting (XSS) via Cookie Manipulation php