simonmichael/hledger

Releases603

Frequency1 week 3 days

Last Release about 1 month ago

Stars4.52K

Robust, fast, intuitive plain text accounting tool with CLI, TUI and web interfaces.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-46888 ↗	May 21, 2023Sunday, 21 May 2023, 20:15	5.4 MEDIUM	—
An issue was discovered in hledger before 1.23. A Stored Cross-Site Scripting (XSS) vulnerability exists in toBloodhoundJson that allows an attacker to execute JavaScript by encoding user-controlled values in a payload with base64 and parsing them with the atob function.