Invoice Ninja version 3.8.1 is vulnerable to stored cross-site scripting vulnerability, within the invoice creation page, which can result in disruption of service and execution of javascript code.
CPE | Name | Operator | Version |
---|---|---|---|
invoiceninja | eq | 2.6.3 | |
invoiceninja | eq | 2.6.9 | |
invoiceninja | eq | 2.9.0 | |
invoiceninja | eq | 3.1.0 | |
invoiceninja | eq | 2.7.1 | |
invoiceninja | eq | 3.6.1 | |
invoiceninja | eq | 2.6 | |
invoiceninja | eq | 2.6.5 | |
invoiceninja | eq | 2.4.3 | |
invoiceninja | eq | 3.0.3 |