V
Vexday
by TrueHacking
›
Briefing
Live
PT
ES
EN
Home
/
Technologies
/
SolidInvoice
Vulnerabilities in
SolidInvoice
2 results
CVE-2026-46489
HIGH
SolidInvoice: Unrestricted file upload with no MIME validation allows stored XSS via malicious SVG logo
EPSS
0.3%
CVE-2026-46622
HIGH
SolidInvoice: API tokens stored as plaintext in the database allowing full credential compromise on database breach
EPSS
0.2%