Skip to content

2.1.13
Compare
Choose a tag to compare
@cuneytsenturk cuneytsenturk released this 15 May 16:14
· 3568 commits to master since this release
2.1.13
03c960d

Security

  • Unauthorized access to company [Critical Severity]
  • HTML code injection leads to XSS via avatar [High Severity]
  • Stored XSS in Sales > Invoices [High Severity]
  • PHP code execution from price field [Low Severity]
  • DoS by manipulating the locale variable [Low Severity]
  • Password reset link modifiable [Low Severity]
  • Code execution from price field [Low Severity]
Assets 3