CVE-2024-53353

Name of the Vulnerable Software and Affected Versions Invoice Ninja (affected versions not specified)

Description A Server-Side Request Forgery (SSRF) issue has been discovered in Invoice Ninja, an open-source invoicing platform. This flaw could allow attackers to access sensitive files, posing serious risks for users. The vulnerability can be exploited via PDF generation, allowing access to files like "/etc/passwd".

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.