huntr: crater-invoice/crater

crater-invoice / crater

Open Source Invoicing Solution for Individuals & Businesses

Submit a report

FIRST INTERACTION

WITHIN2 DAYS

REVIEW

WITHIN11 DAYS

FIX

WITHIN32 DAYS

crater-invoice

Unrestricted Upload of File with Dangerous Type

Apr 6th 2023

pending

crater-invoice

Insecure Direct Object Reference (IDOR)

Sep 4th 2022

pending

crater-invoice

Blind Server-Side Request Forgery in PDF Generation

Sep 4th 2022

pending

crater-invoice

Insufficient Session Expiration

Sep 4th 2022

pending

crater-invoice

Business Logic Errors

Apr 27th 2022

pending

crater-invoice

User can view pdf file without privilege

Apr 22nd 2022

lekhang123lc•

pending

crater-invoice

Stored XSS in company logo

Mar 28th 2022

pending

crater-invoice

hijack account using xss

Mar 25th 2022

pending

crater-invoice

Insecure deserialization of not validated module file

Mar 29th 2022

theworstcomrade•

High

•$30

High

•$30•CVE-2022-1032

crater-invoice

Unrestricted Upload of File with Dangerous Type

Mar 22nd 2022

theworstcomrade•

High

•$45

High

•$45•CVE-2022-1033

crater-invoice

Business Logic Errors

Mar 21st 2022

shubh123-tri•

Medium

•$70

Medium

•$70•CVE-2022-0514

crater-invoice

Cross-Site Request Forgery (CSRF)

Mar 21st 2022

khanhchauminh•

Medium

•$42

Medium

•$42•CVE-2022-0515

crater-invoice

Cross-site Scripting (XSS) - Stored

Jan 26th 2022

1d8•

High

•$42.5

High

•$42.5•CVE-2022-0372

crater-invoice

Unrestricted Upload of File with Dangerous Type

Jan 16th 2022

theworstcomrade•

High

•$80

High

•$80•CVE-2022-0242

crater-invoice

Improper Access Control

Jan 26th 2022

theworstcomrade•

High

High

•CVE-2022-0203

crater-invoice

PHP Remote File Inclusion

Jan 26th 2022

Critical

•$70

Critical

•$70

crater-invoice

Unrestricted Upload of File with Dangerous Type

Jan 12th 2022

theworstcomrade•

High

•$98

High

•$98•CVE-2021-4080

CRITICAL

$0

HIGH

$0

MEDIUM

$0

LOW

$0