How to fix EUVD-2026-17616?

Within 24 hours: Identify all InvoiceShelf instances and document current versions; restrict administrative access to payment note fields where feasible. Within 7 days: Upgrade all InvoiceShelf installations to version 2.2.0 or later per vendor advisory. Within 30 days: Audit PDF generation activity logs for suspicious payment notes containing HTML/resource references and review network egress patterns from InvoiceShelf servers during the vulnerable window.

EUVD-2026-17616

| CVE-2026-34366 HIGH

2026-03-31 GitHub_M

7.6

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

Low

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 31, 2026 - 20:31 euvd

EUVD-2026-17616

Analysis Generated

Mar 31, 2026 - 20:31 vuln.today

CVE Published

Mar 31, 2026 - 20:05 nvd

HIGH 7.6

Description

InvoiceShelf is an open-source web & mobile app that helps track expenses, payments and create professional invoices and estimates. Prior to version 2.2.0, a Server-Side Request Forgery (SSRF) vulnerability exists in the Payment receipt PDF generation module. User-supplied HTML in the payment Notes field is passed unsanitised to the Dompdf rendering library, which will fetch any remote resources referenced in the markup. The vulnerability is exploitable directly via the PDF receipt endpoint, regardless of whether automated email attachments are enabled. This issue has been patched in version 2.2.0.

Analysis

Server-Side Request Forgery in InvoiceShelf's PDF payment receipt generation allows authenticated high-privilege users to make arbitrary HTTP requests from the server through unsanitized HTML injection in payment Notes fields. The vulnerability affects InvoiceShelf versions prior to 2.2.0, leveraging the Dompdf library's resource fetching behavior to pivot attacks against internal network resources or exfiltrate data via DNS/HTTP channels. …

Remediation

Within 24 hours: Identify all InvoiceShelf instances and document current versions; restrict administrative access to payment note fields where feasible. Within 7 days: Upgrade all InvoiceShelf installations to version 2.2.0 or later per vendor advisory. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +38

POC: 0

EUVD-2026-17616 vulnerability details – vuln.today

Back

EUVD-2026-17616

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

EUVD-2026-17616

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code