← ターゲット選定に戻る

CRM

InvoicePlane/InvoicePlane

A self-hosted open source application for managing your invoices, clients and payments.

#php#invoices#invoicing#open-source#crm#billing#invoiceplane#codeigniter

スコア

90

/ 100

Star

3,047

Fork

861

Open Issue

50

サイズ

24MB

言語

PHP ★

最終push

0 日前

Docker

🐳 compose ★

採点内訳

過去CVE 11件 (やや多い)

✓

直近 push: 0 日前

✓

得意言語 (PHP)

✓

オープンissue 50件

—

中規模 (24MB)

✓

Docker 対応 (compose)

✓

1k–10k: 初心者ベスト (★3,047)

✓

※ 各項目の重みは「採点ルール」を参照。合計は 0 で底打ち。

過去の SecurityAdvisory (12 件)

MEDIUMGHSA-73x8-gr6v-vjvj CVE-2026-247462026/2/16
Stored Cross-Site Scripting (XSS) in InvoicePlane version 1.7.0
CRITICALGHSA-88gq-mv54-v3fc CVE-2026-234912026/2/16
Unauthenticated Path Traversal in Guest Controller
MEDIUMGHSA-ccpx-2v5c-cc24 CVE-2026-262812026/2/16
Stored Cross-Site Scripting (XSS) in Sumex Invoice View
MEDIUMGHSA-432m-jv69-qp5j CVE-2026-262702026/2/16
Stored Cross-Site Scripting in Identifier Formatting
MEDIUMGHSA-3wjq-822q-98f4 CVE-2026-255962026/2/16
Stored XSS via Product Unit Name in Invoice Item List
MEDIUMGHSA-xxvr-2564-6jg6 CVE-2026-255952026/2/16
Stored XSS via Invoice Number in Invoice View and Dashboard
MEDIUMGHSA-wrr7-2f27-8h94 CVE-2026-255942026/2/16
Stored XSS via Family Name in Product Form
MEDIUMGHSA-w2wc-6mf4-99x82026/2/16
Multiple Stored Cross-Site Scripting (XSS) Vulnerabilities in Admin Panel
CRITICALGHSA-g6rw-m9mf-33ch CVE-2026-255482026/2/16
Remote Code Execution via Local File Inclusion and Log Poisoning
MEDIUMGHSA-485m-4725-2428 CVE-2026-247432026/2/16
Stored Cross-Site Scripting (XSS) in InvoicePlane version 1.7.0
MEDIUMGHSA-r9rq-f946-6x54 CVE-2026-247452026/2/16
Stored Cross-Site Scripting (XSS) in InvoicePlane version 1.7.0
MEDIUMGHSA-5mxx-553h-m62w CVE-2026-247442026/2/16
Stored Cross-Site Scripting (XSS) in InvoicePlane version 1.7.0