Cale Dunlap Openinvoice — known CVE vulnerabilities
Every CVE whose affected-product data names Cale Dunlap Openinvoice, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2008-6523 — CVSS 7.5 (high): auth.php in openInvoice 0.90 beta and earlier allows remote attackers to bypass authentication and gain privileges by setting the oiauth…
CVE-2008-6524 — CVSS 6.5 (medium): resetpass.php in openInvoice 0.90 beta and earlier allows remote authenticated users to change the passwords of arbitrary users via a…