Lucene search
CVE-2021-42258
ποΈΒ 22 Oct 2021Β 00:00:00Reported byΒ AttackerKBTypeΒ 
Β attackerkbπΒ attackerkb.comπΒ 47Β Views
BQE BillQuick Web Suite 2018 through 2021 before 22.0.9.1 allows SQL injection for unauthenticated remote code execution, exploited in the wild in October 2021 for ransomware installation. SQL injection can use the txtID parameter
| Reporter | Title | Published | Views | Family All 17 |
|---|---|---|---|---|
 | CVE-2021-42258 | 22 Oct 202122:15 | β | cve |
 | Sql injection | 22 Oct 202122:15 | β | prion |
 | CVE-2021-42258 | 22 Oct 202121:25 | β | vulnrichment |
 | CVE-2021-42258 | 22 Oct 202121:25 | β | cvelist |
 | BillQuick Web Suite txtID SQL Injection | 31 Aug 202400:00 | β | packetstorm |
 | BillQuick Web Suite txtID SQLi | 6 Nov 202110:29 | β | metasploit |
 | Hackers Exploited Popular BillQuick Billing Software to Deploy Ransomware | 25 Oct 202108:19 | β | thn |
 | BQE BillQuick Web Suite SQL Injection Vulnerability | 3 Nov 202100:00 | β | cisa_kev |
 | BillQuick Website SQL injection (CVE-2021-42258) | 25 Nov 202100:00 | β | checkpoint_advisories |
 | BillQuick Web Suite SQL Injection | 26 Oct 202108:26 | β | nuclei |
10
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo22 Oct 2021 00:00Current
9.9High risk
Vulners AI Score9.9
CVSS26.8
CVSS39.8
EPSS0.93901