Stored Cross-Site Scripting Vulnerability in Invoice Ninja v3.8.1

Stored Cross-Site Scripting Vulnerability in Invoice Ninja v3.8.1

CVE-2017-1000466 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Invoice Ninja version 3.8.1 is vulnerable to stored cross-site scripting vulnerability, within the invoice creation page, which can result in disruption of service and execution of javascript code.

Learn more about our Web Application Penetration Testing UK.