{"id":"CVE-2019-7223","details":"InvoicePlane 1.5 has stored XSS via the index.php/invoices/ajax/save invoice_password parameter, aka the \"PDF password\" field to the \"Create Invoice\" option. The XSS payload is rendered at an index.php/invoices/view/## URI. NOTE: this is different from CVE-2018-12255.","modified":"2026-03-14T09:37:34.195388Z","published":"2019-03-21T16:01:11.377Z","references":[{"type":"EVIDENCE","url":"https://cxsecurity.com/issue/WLB-2019020191"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/invoiceplane/invoiceplane","events":[{"introduced":"fbf293cde56126dc9e38582e7ff45934e8dc14f9"},{"last_affected":"3c06f141fff13f790530066cfd135ce2d5ceb383"}],"database_specific":{"versions":[{"introduced":"1.5.0"},{"last_affected":"1.5.9"}]}}],"versions":["v1.5.0","v1.5.1","v1.5.2","v1.5.3","v1.5.4","v1.5.5","v1.5.6","v1.5.7","v1.5.8","v1.5.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-7223.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}]}