CVE-2024-58293

NONE

Akaunting 3.1.8 contains a server-side template injection vulnerability that allows authenticated administrators to execute template expressions in multiple form input fields. Attackers can inject tem

게시됨: 12/11/2025업데이트됨: 12/12/2025
NVD에서 보기MITRE에서 보기

설명

Akaunting 3.1.8 contains a server-side template injection vulnerability that allows authenticated administrators to execute template expressions in multiple form input fields. Attackers can inject template payloads in items, taxes, transactions, and vendor name fields to perform arithmetic operations and string manipulations.

AI 분석AI 기반

참조