Known Vulnerabilities for Invoices by Easydigitaldownloads
Listed below are 1 of the newest known vulnerabilities associated with "Invoices" by "Easydigitaldownloads".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57418 json | Missing Authorization vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout-invoices allows Exploiting Incorre... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-49056 json | Unauthenticated Sensitive Data Exposure in WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels <= 4.9... | Not Provided | 2026-06-15 | 2026-06-15 |
| CVE-2026-45714 json | CubeCart is an ecommerce software solution. Prior to 6.7.0, an Authenticated Server-Side Template Injection (SSTI) vulnerabil... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-40486 json | Kimai is an open-source time tracking application. In versions 2.52.0 and below, the User Preferences API endpoint (PATCH /ap... | Not Provided | 2026-04-17 | 2026-04-20 |
| CVE-2026-39472 json | Shop manager PHP Object Injection in WooCommerce PDF Invoices & Packing Slips < 5.9.0 versions. | Not Provided | 2026-06-15 | 2026-06-15 |
| CVE-2026-13116 json | The PDF Invoices & Packing Slips for WooCommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in al... | Not Provided | 2026-07-11 | 2026-07-13 |
| CVE-2026-9719 json | The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Cross-Site Reques... | Not Provided | 2026-06-06 | 2026-06-06 |
| CVE-2026-9021 json | The Easy Invoice plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.1.19. This i... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-8611 json | The Klamra Paycal for Aspaclaria plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to... | Not Provided | 2026-06-06 | 2026-06-06 |
| CVE-2026-5234 json | The LatePoint plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.... | Not Provided | 2026-04-17 | 2026-04-17 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Easydigitaldownloads | Invoices | - |