CVE-2021-36801

Summary

Akaunting version 2.1.12 and earlier suffers from an authentication bypass issue in the user-controllable field, companies[0]. This issue was fixed in version 2.1.13 of the product.

Affected Software

VendorProductVersion RangeStatus
AkauntingAkaunting2.1.12 <= 2.1.12affected

Weaknesses

  • CWE-639: CWE-639 Authorization Bypass Through User-Controlled Key

ADP Enrichment

CVE Program Container

Additional References

References