VYPR
Vendor

Invoiceninja

Products
1
CVEs
11
Across products
11
Status
Private

Products

1

Recent CVEs

11
  • CVE-2024-55555HigJan 7, 2025
    risk 0.57cvss 8.8epss 0.07

    Invoice Ninja before 5.10.43 allows remote code execution from a pre-authenticated route when an attacker knows the APP_KEY. This is exacerbated by .env files, available from the product's repository, that have default APP_KEY values. The route/{hash} route defined in the…

  • CVE-2026-29925HigMar 30, 2026
    risk 0.50cvss 7.7epss 0.00

    Invoice Ninja v5.12.46 and v5.12.48 is vulnerable to Server-Side Request Forgery (SSRF) in CheckDatabaseRequest.php.

  • CVE-2025-10009HigSep 22, 2025
    risk 0.49cvss epss 0.00

    Incorrect handling of uploaded files in the admin "Restore" function in Invoice Ninja <= 5.11.72 allows attackers with admin credentials to execute arbitrary code on the server via uploaded .php files.

  • CVE-2025-0474HigJan 14, 2025
    risk 0.43cvss 7.7epss 0.00

    Invoice Ninja is vulnerable to authenticated Server-Side Request Forgery (SSRF) allowing for arbitrary file read and network resource requests as the application user. This issue affects Invoice Ninja: from 5.8.56 through 5.11.23.

  • CVE-2017-1000466MedJan 3, 2018
    risk 0.35cvss 5.4epss 0.01

    Invoice Ninja version 3.8.1 is vulnerable to stored cross-site scripting vulnerability, within the invoice creation page, which can result in disruption of service and execution of javascript code.

  • CVE-2026-0649MedJan 7, 2026
    risk 0.31cvss 4.7epss 0.00

    A security vulnerability has been detected in invoiceninja up to 5.12.38. The affected element is the function copy of the file /app/Jobs/Util/Import.php of the component Migration Import. The manipulation of the argument company_logo leads to server-side request forgery. It is…

  • CVE-2025-8700MedAug 26, 2025
    risk 0.31cvss epss 0.00

    Invoice Ninja's configuration on macOS, specifically the presence of entitlement "com.apple.security.get-task-allow", allows local attackers with unprivileged access (e.g. via a malicious application) to attach a debugger, read or modify the process memory, inject code in the…

  • CVE-2026-33742Mar 26, 2026
    risk 0.00cvss epss 0.00

    Invoice Ninja is a source-available invoice, quote, project and time-tracking app built with Laravel. Product notes fields in Invoice Ninja v5.13.0 allow raw HTML via Markdown rendering, enabling stored XSS. The Markdown parser output was not sanitized with `purify::clean()`…

  • CVE-2026-33628Mar 26, 2026
    risk 0.00cvss epss 0.00

    Invoice Ninja is a source-available invoice, quote, project and time-tracking app built with Laravel. Invoice line item descriptions in Invoice Ninja v5.13.0 bypass the XSS denylist filter, allowing stored XSS payloads to execute when invoices are rendered in the PDF preview or…

  • CVE-2021-3977Dec 24, 2021
    risk 0.00cvss epss 0.01

    invoiceninja is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

  • CVE-2021-33898Jun 6, 2021
    risk 0.00cvss epss 0.02

    In Invoice Ninja before 4.4.0, there is an unsafe call to unserialize() in app/Ninja/Repositories/AccountRepository.php that may allow an attacker to deserialize arbitrary PHP classes. In certain contexts, this can result in remote code execution. The attacker's input must be…