FOSSBilling Business Logic Flaw: Authenticated Users Can Reset API Keys for Inactive Orders
Security AdvisoryGHSA-vulnerabilityHighFOSSBilling
Affected:
- FOSSBilling 0.5.3
- FOSSBilling 0.6.0
- FOSSBilling 0.7.0
- FOSSBilling 0.7.1
- FOSSBilling 0.7.2
Fixed in:
- FOSSBilling 0.8.0
Referenced CVEs: CVE-2026-53644
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.