Lucene search
K

70 matches found

Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.5 views

PT-2025-33883

Name of the Vulnerable Software and Affected Versions: SolidInvoice versions prior to 2.4.1 Description: A security flaw has been discovered in SolidInvoice. The impacted element is an unknown function within the /clients file of the Clients Module. Manipulation of the Name argument results in...

5.4CVSS3.7AI score0.00264EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.6 views

PT-2025-33882 · Unknown · Solidinvoice

Name of the Vulnerable Software and Affected Versions: SolidInvoice versions prior to 2.4.1 Description: A vulnerability exists in SolidInvoice that allows for cross site scripting. The issue is located in an unknown function within the /tax/rates file of the Tax Rates Module. Manipulation of the...

5.4CVSS6.6AI score0.00264EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.6 views

SolidInvoice 代码注入漏洞

SolidInvoice is an invoice solution application from SolidInvoice open source. A code injection vulnerability exists in SolidInvoice version 2.4.0 and earlier, which stems from a cross-site scripting attack due to the incorrect manipulation of the parameter client name in the file...

5.4CVSS6.6AI score0.00264EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.3 views

SolidInvoice 代码注入漏洞

SolidInvoice is an invoice solution application from SolidInvoice open source. A code injection vulnerability exists in SolidInvoice version 2.4.0 and earlier, which stems from the incorrect manipulation of the parameter Name by file/quotes in the component Quote Module, resulting in a cross-site...

5.4CVSS6.7AI score0.00264EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.8 views

PT-2025-33880 · Unknown · Solidinvoice

Name of the Vulnerable Software and Affected Versions: SolidInvoice versions prior to 2.4.1 Description: A cross-site scripting issue exists in SolidInvoice. The vulnerability affects an unknown function within the /quotes file of the Quote Module. Manipulation of the Name argument can lead to...

5.4CVSS3.7AI score0.00264EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.3 views

SolidInvoice 代码注入漏洞

SolidInvoice is an invoice solution application from SolidInvoice open source. A code injection vulnerability exists in SolidInvoice version 2.4.0 and earlier, which stems from the incorrect manipulation of the parameter Client Name by file/invoice in the component Invoice Creation Module, leadin...

5.4CVSS6.6AI score0.00264EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.9 views

PT-2025-33865 · Unknown · Solidinvoice

Name of the Vulnerable Software and Affected Versions: SolidInvoice versions prior to 2.4.1 Description: A vulnerability exists in SolidInvoice that allows for cross site scripting. The issue affects unknown code within the /invoice/recurring file of the Recurring Invoice Module. Manipulation of...

5.4CVSS6.7AI score0.00264EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.11 views

PT-2025-33879 · Unknown · Solidinvoice

Name of the Vulnerable Software and Affected Versions: SolidInvoice versions prior to 2.4.1 Description: A vulnerability exists in SolidInvoice affecting the Invoice Creation Module. The issue involves an unknown processing of the /invoice file. Manipulation of the Client Name argument results in...

5.4CVSS6.4AI score0.00264EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.5 views

SolidInvoice 代码注入漏洞

SolidInvoice is an invoice solution application from SolidInvoice open source. A code injection vulnerability exists in SolidInvoice version 2.4.0 and earlier, which stems from the incorrect manipulation of the parameter Name by file/clients in the component Clients Module, leading to a cross-sit...

5.4CVSS6.6AI score0.00264EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.6 views

SolidInvoice 代码注入漏洞

SolidInvoice is an invoice solution application from SolidInvoice open source. A code injection vulnerability exists in SolidInvoice version 2.4.0 and earlier, which stems from the incorrect manipulation of the parameter Name in the file /tax/rates in the component Tax Rates Module, resulting in ...

5.4CVSS6.6AI score0.00264EPSS
Exploits1References6
Rows per page
Query Builder