V
Vexday
by TrueHacking
›
PT
ES
EN
Intelligence
▾
Intelligence
Exploit Timeline
risk queue
Threats
ransomware · malware
Overview
observatory
Explore
▾
Explore
CVEs
Technologies
Vendors
Weakness types
Briefing
Live
Home
/
Technologies
/
invoiceninja
Vulnerabilities in
invoiceninja
3 results
CVE-2021-3977
MEDIUM
Cross-site Scripting (XSS) - Stored in invoiceninja/invoiceninja
EPSS
0.6%
CVE-2026-33628
MEDIUM
Invoice Ninja Denylist Bypass may Lead to Stored XSS via Invoice Line Items
EPSS
0.2%
CVE-2026-33742
MEDIUM
Invoice Ninja has Stored XSS via Markdown HTML Injection in Product Notes
EPSS
0.2%