A stored XSS vulnerability in SolidInvoice allows an authenticated administrator to execute malicious scripts in the browsers of other users.

The application fails to properly sanitize SVG file uploads. An authenticated administrator can upload an SVG file containing malicious JavaScript, which is then stored and executed in the browser of any user who views the file.

With a CVSS score of 8.1, this vulnerability poses a significant risk to the integrity of user sessions. An attacker can use this XSS to steal session cookies, capture administrative credentials, or perform unauthorized actions on behalf of other users, leading to potential data breach and administrative account compromise.

Immediate Action: Upgrade SolidInvoice to version 2.3.17 or later to implement strict file upload sanitization.

Proactive Monitoring: Review audit logs for suspicious file uploads and monitor for anomalous browser behavior among administrative users.

Compensating Controls: Implement a Content Security Policy (CSP) that restricts script execution and prevents the loading of unauthorized scripts from uploaded files.

Public Exploit Available: true

This stored XSS vulnerability grants significant leverage to an attacker who has already gained administrative access. Updating to version 2.3.17 is essential to prevent the execution of malicious scripts and protect the organization's user base from cross-site scripting attacks.