2 matches found
EUVD-2026-36301
SolidInvoice is an open-source invoicing platform. Prior to version 2.3.17, API tokens used to authenticate all REST API requests are stored as plaintext strings in the apitokens database table. Any attacker who obtains read access to the database — through SQL injection, a leaked backup, a...
Bug Finder SASS BILLER 跨站脚本漏洞
Bug Finder SASS BILLER is a SASS-based invoicing and billing platform from Bug Finder, Inc. A cross-site scripting vulnerability exists in Bug Finder SASS BILLER version 1.0, which stems from the presence of certain unknown processing in the file /company/store, leading to cross-site scripting vi...