Missing Authorization
Overview Affected versions of this package are vulnerable to Missing Authorization in the invoice function in Orders.php. A user can access and generate invoices without authorization. Remediation Upgrade tastyigniter/tastyigniter to version 4.0.0 or higher. References - Medium Blog - Vulnerable...