Sourcecodester Indian Invoicing System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Sourcecodester Indian Invoicing System.
By the Year
In 2026 there have been 4 vulnerabilities in Sourcecodester Indian Invoicing System with an average score of 5.1 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 4 | 5.10 |
It may take a day or so for new Indian Invoicing System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Sourcecodester Indian Invoicing System Security Vulnerabilities
XSS in SourceCodester Indian Invoicing System 0.x/1.0 (add_order.php)
CVE-2026-9414
3.5 - Low
- May 25, 2026
A security flaw has been discovered in SourceCodester Indian Invoicing System up to 0.x/1.0. The impacted element is an unknown function of the file /Invoicing/add_order.php of the component Invoice Template Render Database-Backed. The manipulation of the argument customer_name results in cross site scripting. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks.
XSS
XSS in SourceCodester Indian Invoicing 1.0 /category.php msg
CVE-2026-9413
4.3 - Medium
- May 25, 2026
A vulnerability was identified in SourceCodester Indian Invoicing System 1.0. The affected element is an unknown function of the file /Invoicing/category.php. The manipulation of the argument msg leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used.
XSS
Improper Access Control in SC Indian Invoicing 1.0 Backend Endpoint
CVE-2026-9412
6.3 - Medium
- May 25, 2026
A vulnerability was determined in SourceCodester Indian Invoicing System 1.0. Impacted is an unknown function of the component Backend Endpoint. Executing a manipulation can lead to improper access controls. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. Multiple endpoints are affected.
Authorization
SourceCodester Indian Invoicing System 1.0 SQLi in Invoice Gen Handler
CVE-2026-9411
6.3 - Medium
- May 25, 2026
A vulnerability was found in SourceCodester Indian Invoicing System 1.0. This issue affects some unknown processing of the file /Invoicing/IGST_Invoice.php of the component Invoice Generation Handler. Performing a manipulation of the argument customer_name/category results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sourcecodester Indian Invoicing System or by Sourcecodester? Click the Watch button to subscribe.
