Unrated severityNVD Advisory· Published Mar 8, 2007· Updated Apr 23, 2026

CVE-2007-1341

Description

include/auth/auth.php in Simple Invoices before 2007 03 05 does not use the login system to protect print preview pages for invoices, which might allow attackers to obtain sensitive information.

Affected products

Simple Invoices/Simple Invoices3 versions
cpe:2.3:a:simple_invoices:simple_invoices:2006-12-11:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:simple_invoices:simple_invoices:2006-12-11:*:*:*:*:*:*:*
- cpe:2.3:a:simple_invoices:simple_invoices:2007-01-25:*:*:*:*:*:*:*
- cpe:2.3:a:simple_invoices:simple_invoices:2007-02-02:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/22818nvdPatchVendor Advisory
secunia.com/advisories/24402nvdVendor Advisory
code.google.com/p/simpleinvoices/issues/detailnvd
forum.tufat.com/showthread.phpnvd
osvdb.org/33860nvd
sourceforge.net/project/shownotes.phpnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000