All 8 CVE vulnerabilities found in Akaunting, with AI-generated Chinese analysis, references, and POCs.
Vendor: Akaunting
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-5568 | Akaunting Invoice/Billing cross site scripting CWE-79 | 3.5 | Low | 2026-04-05 |
| CVE-2024-58293 | Akaunting 3.1.8 Server-Side Template Injection via Multiple Form Fields CWE-1336 | 7.2AI | HighAI | 2025-12-11 |
| CVE-2021-36805 | Akaunting Invoice Footer Persistent XSS CWE-79 | 5.2 | Medium | 2021-08-04 |
| CVE-2021-36804 | Akaunting Password Reset Relay CWE-640 | 5.4 | Medium | 2021-08-04 |
| CVE-2021-36803 | Akaunting Avatar Persistent XSS CWE-79 | 6.3 | Medium | 2021-08-04 |
| CVE-2021-36802 | Akaunting DoS via User-Controlled 'locale' Variable CWE-248 | 6.5 | Medium | 2021-08-04 |
| CVE-2021-36801 | Akaunting Authentication Bypass in Company Selection CWE-639 | 8.1 | High | 2021-08-04 |
| CVE-2021-36800 | Akaunting OS Command Injection in 'Money.php' CWE-94 | 8.7 | High | 2021-08-04 |
All 8 known CVE vulnerabilities affecting Akaunting with full Chinese analysis, references, and POCs where available.