CVE-2026-40495 - FOSSBilling version exposed via asset cache buster
Posted: Wed Jun 03, 2026 10:31 pm
CVE ID: CVE-2026-40495
Published: June 3, 2026
Description: FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 leak the exact system version through asset cache buster parameters in HTML output, bypassing the `hide_version_public` security setting. The FOSSBilling version is embedded in the query string of every `
More Information:
https://cvefeed.io/vuln/detail/CVE-2026-40495
Published: June 3, 2026
Description: FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 leak the exact system version through asset cache buster parameters in HTML output, bypassing the `hide_version_public` security setting. The FOSSBilling version is embedded in the query string of every `
More Information:
https://cvefeed.io/vuln/detail/CVE-2026-40495