Bounties
Partners
Community
Info
neorazorx / facturascripts
Project repository
Open source ERP software. Built on modern PHP and bootstrap 4. Easy and powerful.
Submit a report
FIRST INTERACTION
WITHIN
5 DAYS
REVIEW
WITHIN
5 DAYS
FIX
WITHIN
22 DAYS
Stored XSS in EditEstadoDocumento
Jun 21st 2022
iohehe
•
Critical
Critical
Reflected XSS in param 'activetab' and param 'code'
Jun 21st 2022
kmaron1n
•
High
High
Cross-site scripting - Reflected XSS caused by error logs
Jun 10th 2022
iohehe
•
self closed
Cross-site scripting - Reflected XSS caused by error logs in neorazorx/facturasc...
Jun 6th 2022
iohehe
•
Medium
Medium
•
CVE-2022-2016
CVE-2022-2016
Refelect XSS in neorazorx/facturascripts
May 31st 2022
iohehe
•
Medium
Medium
•
CVE-2022-1988
CVE-2022-1988
Reflected Cross-site Scripting (XSS)
May 19th 2022
khanhchauminh
•
self closed
xss bypass
May 19th 2022
ranjit-git
•
Critical
•
$12
Critical
•
$12
Stored XSS
May 30th 2022
khanhchauminh
•
Critical
•
$14
Critical
•
$14
xss using .xsig file
May 16th 2022
ranjit-git
•
Critical
•
$12
Critical
•
$12
xss bypass of https://huntr.dev/bounties/4bc8f164-faf8-4096-aa00-e439fa976876/
May 16th 2022
ranjit-git
•
Critical
•
$12
Critical
•
$12
xss vi filename
May 18th 2022
ranjit-git
•
Critical
•
$10
Critical
•
$10
xss filter bypass
May 16th 2022
ranjit-git
•
Critical
•
$14
Critical
•
$14
Stored XSS due to the setting text/xml mime type for xml files
May 16th 2022
416e6e61
•
Critical
•
$10
Critical
•
$10
Cross-site Scripting (XSS) in Search Fuction with filter
May 10th 2022
dungtuanha
•
Critical
•
$10
Critical
•
$10
Reflected Cross site scripting
May 9th 2022
gaurav-g2
•
High
•
$5
High
•
$5
Account Takeover
May 12th 2022
gaurav-g2
•
Critical
•
$10
Critical
•
$10
•
CVE-2022-1715
CVE-2022-1715
Stored Xss
May 10th 2022
gaurav-g2
•
Critical
•
$10
Critical
•
$10
Reflected Xss using url based payload
May 9th 2022
gaurav-g2
•
Critical
•
$10
Critical
•
$10
•
CVE-2022-1682
CVE-2022-1682
Cross-site scripting - Stored via upload `.xsig` file
May 8th 2022
nhienit2010
•
Critical
•
$10
Critical
•
$10
Cross-site Scripting (XSS) via Cookie Value
May 5th 2022
dungtuanha
•
Critical
•
$10
Critical
•
$10
Sensitive data in EXIF data do not strip from image uploaded
May 16th 2022
nhienit2010
•
informative
Low
Cross-site scripting - Reflected via upload `.xml` file
May 5th 2022
nhienit2010
•
Critical
•
$10
Critical
•
$10
Cross-site scripting - Reflected in Create Subaccount
May 3rd 2022
nhienit2010
•
Critical
•
$10
Critical
•
$10
•
CVE-2022-1571
CVE-2022-1571
Cross-site Scripting (XSS) in Error Page
Apr 30th 2022
dungtuanha
•
Critical
•
$10
Critical
•
$10
Improper Access Control (IDOR)
Apr 30th 2022
dungtuanha
•
Critical
•
$10
Critical
•
$10
Stored Cross-site Scripting via file upload
Apr 30th 2022
dungtuanha
•
duplicate
Critical
Multiple Store XSS via upload svg file and the file name of attachment
Apr 28th 2022
minhnb11
•
High
•
$5
High
•
$5
•
CVE-2022-2065
CVE-2022-2065
Refelect XSS in facturascripts
Apr 28th 2022
minhnb11
•
High
•
$5
High
•
$5
•
CVE-2022-2066
CVE-2022-2066
Cross-site Scripting (XSS) - Reflected
Apr 28th 2022
dungtuanha
•
Critical
•
$10
Critical
•
$10
Stored XSS via upload plugin functionality in zip format
Apr 27th 2022
iamshooter99
•
Critical
•
$10
Critical
•
$10
•
CVE-2022-1514
CVE-2022-1514
Store XSS in title parameter executing at EditUser Page & EditProducto page
Apr 21st 2022
iamshooter99
•
Critical
•
$10
Critical
•
$10
•
CVE-2022-1457
CVE-2022-1457
Cross-Site Request Forgery (CSRF)
Apr 21st 2022
am0o0
•
Medium
•
$25
Medium
•
$25
Cross-Site Request Forgery (CSRF)
Oct 24th 2021
am0o0
•
Medium
•
$25
Medium
•
$25
Cross-Site Request Forgery (CSRF)
Oct 24th 2021
am0o0
•
Medium
•
$25
Medium
•
$25
Cross-Site Request Forgery (CSRF)
Oct 24th 2021
am0o0
•
Medium
•
$25
Medium
•
$25
Cross-Site Request Forgery (CSRF)
Oct 24th 2021
am0o0
•
Medium
•
$25
Medium
•
$25
Cross-Site Request Forgery (CSRF)
Oct 24th 2021
am0o0
•
Medium
•
$25
Medium
•
$25
Cross-Site Request Forgery (CSRF)
Oct 24th 2021
am0o0
•
Medium
•
$25
Medium
•
$25
Cross-Site Request Forgery (CSRF)
Oct 24th 2021
am0o0
•
Medium
•
$25
Medium
•
$25
CRITICAL
$0
HIGH
$0
MEDIUM
$0
LOW
$0
