CNNVD-202602-1337 Information

Feb 09, 2026 cve

CNNVD ID

CNNVD-202602-1337

CVE-2026-1959

CNNVD Published: 2026-02-09

Description (Chinese)

Loggro Pymes是西班牙Loggro公司的一个云端业务管理软件。 Loggro Pymes存在跨站脚本漏洞，该漏洞源于对文件/loggrodemo/jbrain/MaestraCuentasBancarias中参数descripción的错误操作，可能导致存储型跨站脚本攻击。

Description (English)

Loggro Pymes is a cloud business management software for Loggro in Spain. Loggro Pymes has a cross-site script loophole, which stems from an error in the use of the parameter descripción in the document/loggrademo/jbrain/MaestraCuantasBancarias, which may result in a storage-type cross-site script attack.

Vulnerability Type

跨站脚本

Affected Vendor

Loggro

Published

2026-02-09

Last Modified

2026-02-24

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-loggro-pymes-web-application

Patch

https://loggro.com/pymes/

Share on: