CVE-2026-58450
Received Received - Intake

Open Redirect Vulnerability in Invoice Ninja Client Portal

Vulnerability report for CVE-2026-58450, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-30

Last updated on: 2026-06-30

Assigner: VulnCheck

Description

Invoice Ninja through 5.13.26 contains an open redirect vulnerability in the client portal login that allows unauthenticated attackers to redirect authenticated victims to attacker-controlled external URLs by injecting a malicious value into the intended query parameter. Attackers can craft a client login link with an external URL in the intended parameter, which is stored in the session without host validation and emitted verbatim via a bare redirect in the ContactLoginController authenticated() handler after the victim completes a legitimate login, enabling phishing attacks.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-30
Last Modified
2026-06-30
Generated
2026-07-01
AI Q&A
2026-07-01
EPSS Evaluated
N/A
NVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
invoice_ninja invoice_ninja 5.13.26

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-601 The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

Invoice Ninja versions up to 5.13.26 have an open redirect vulnerability in the client portal login. This means that an attacker can create a specially crafted login link containing a malicious external URL in the intended query parameter. When a victim uses this link and logs in, the application redirects them to the attacker-controlled external URL without validating the host. This happens because the intended parameter is stored in the session and then used directly in a redirect after login.

This vulnerability allows unauthenticated attackers to trick authenticated users into visiting malicious websites, enabling phishing attacks.

Impact Analysis

This vulnerability can impact you by enabling attackers to redirect your authenticated users to malicious external websites. This can lead to phishing attacks where users might be tricked into revealing sensitive information or downloading malware. It undermines user trust and can potentially lead to credential theft or other security breaches.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-58450. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart