Akaunting version 2.1.12 and previous versions suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in processing user-supplied avatar images. This issue was fixed in version 2.1.13 of the product.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
akaunting akaunting |