Invoice Ninja PDF Rendering Server Side Request Forgery | VulnCheck Advisories

Go back

Invoice Ninja PDF Rendering Server Side Request Forgery

severity: high
date: January 14, 2025
Affecting: 5.8.56 - 5.11.23
CVE: CVE-2025-0474
CVE type: Server Side Request Forgery
CVSS: 7.7
CVSS V3 Vector: AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
References: Vendor Fix
Credit: Branko Brkic, Louka Jacques-Chevallier