V
Vexday
by TrueHacking
›
PT
ES
EN
Overview
CVEs
Technologies
Vendors
Weakness types
Threats
Briefing
Live
Home
/
Technologies
/
kivitendo
Vulnerabilities in
kivitendo
1 result
CVE-2025-66370
MEDIUM
Kivitendo before 3.9.2 allows XXE injection. By uploading an electronic invoice in the ZUGFeRD format, it is possible to read and exfiltrate
EPSS
0.3%