CVE-2026-8193

Name of the Vulnerable Software and Affected Versions Akaunting version 3.1.21

Description A weakness in the Invoice PDF Rendering component allows for server-side request forgery (SSRF), a flaw where an attacker can induce the server to make requests to an unintended location. This issue occurs during the processing of the file 'config/dompdf.php' and can be exploited remotely.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.