CVE-2026-29925 | Invoice Ninja 5.12.46/5.12.48 CheckDatabaseRequest.php server-side request forgery

March 30, 2026 Yanac

A vulnerability classified as critical has been found in Invoice Ninja 5.12.46/5.12.48. This affects an unknown function of the file CheckDatabaseRequest.php. This manipulation causes server-side request forgery.

This vulnerability is handled as CVE-2026-29925. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2026-29924 | Grav CMS up to 1.7.x SVG File xml external entity reference
CVE-2026-33032 | 0xJacky nginx-ui up to 2.3.5 Model Context Protocol /mcp AuthRequired missing authentication (GHSA-h6c2-x2m2-mwhf)