Matthewlaitinen

**Name of the Vulnerable Software and Affected Versions** MyFinances versions prior to 0.4.6 **Description** The issue allows an actor to access personally identifiable information (PII) and financial information from another account while signed in as a user. This is due to a method in the application that enables access to other customer invoices. **Recommendations** For versions prior to 0.4.6, update to version 0.4.6 to resolve the issue.