14Oca
CVE-2025-0474 | Invoice Ninja up to 5.11.23 on Linux File server-side request forgery
A vulnerability classified as critical was found in Invoice Ninja up to 5.11.23 on Linux. Affected by this vulnerability is an unknown functionality of the component File Handler. The manipulation leads to server-side request forgery. This vulnerability is known as CVE-2025-0474. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.