LOW
Drive
CVE published 2026-05-09
CVE-2026-8193
CVE-2026-8193 is a remotely reachable server-side request forgery issue reported against Akaunting 3.1.21, centered on the Invoice PDF Rendering path in config/dompdf.php. Although the CVSS score is low, the source description says a public exploit exists and that the vendor did not respond to early disclosure. For any deployment that renders invoices and can reach internal or external network resources, [truncated]