Skip to content

InvoicePlane

Productivity & Wikis

A self-hosted open source application for managing your invoices, clients and payments.

Track releases GitHub Website
PHP Latest v1.6.5 · 3mo ago Security brief →

Features

  • Manage invoices and quotes effortlessly
  • Track clients and their transaction history
  • Monitor payments and generate financial reports

Recent releases

View all 4 releases →
v1.6.5 Security relevant
Breaking changes
  • SVG logo uploads now disabled
Security fixes
  • XSS vulnerabilities fixed through sanitization
  • SVG upload restriction to prevent XSS
View release on GitHub
v1.7.1 Security relevant
Breaking changes
  • SVG logo uploads now disabled; existing SVGs blocked
Security fixes
  • Multiple XSS vulnerabilities fixed through input sanitization and output escaping
  • SVG logo XSS vectors eliminated by disabling SVG uploads
Notable features
  • Proper HTML escaping of invoice numbers, tax rates, and payment methods
  • SVG upload restriction to PNG/JPG/GIF only
View release on GitHub
v1.6.4 Security relevant
Security fixes
  • File access vulnerabilities across all controllers
  • Log sanitization for client einvoicing fields
Notable features
  • PayPal Advanced Credit Cards & Venmo support
  • Email address verification with comma/semicolon support
View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
3,058
Forks
860
Languages
PHP SCSS JavaScript
View on GitHub Homepage

Install & Platforms

Install via
docker

Community & Support

Community

Similar tools

InvoiceShelf
invoicerr
SolidInvoice
Invio
FOSSBilling

Beta — feedback welcome: [email protected]