2018-02-09 23:00:00
mitre
PUBLISHED
Invoice Plane version 1.5.4 and earlier contains a Cross Site Scripting (XSS) vulnerability in Clients details that can result in execution of javascript code . This vulnerability appears to have been fixed in 1.5.5 and later.