Authentication Bypass Vulnerability in Akaunting Version 2.1.12 and Earlier

Authentication Bypass Vulnerability in Akaunting Version 2.1.12 and Earlier

CVE-2021-36801 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Akaunting version 2.1.12 and earlier suffers from an authentication bypass issue in the user-controllable field, companies[0]. This issue was fixed in version 2.1.13 of the product.

Learn more about our User Device Pen Test.