77 matches found
EUVD-2022-46257
Malicious code in bioql PyPI...
EUVD-2022-46256
Malicious code in bioql PyPI...
EUVD-2022-44632
Malicious code in bioql PyPI...
EUVD-2022-44633
Malicious code in bioql PyPI...
EUVD-2022-46259
Malicious code in bioql PyPI...
EUVD-2022-44697
Malicious code in bioql PyPI...
CVE-2022-43215
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php...
CVE-2022-43214
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the orderId parameter at printOrder.php...
CVE-2022-43213
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php...
CVE-2022-43212
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the orderId parameter at fetchOrderData.php...
CVE-2022-41440
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /phpinventory/editcategory.php...
CVE-2022-41437
Billing System Project v1.0 was discovered to contain a remote code execution RCE vulnerability via the component /phpaction/createProduct.php...
CVE-2022-41504
An arbitrary file upload vulnerability in the component /phpaction/editProductImage.php of Billing System Project v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-41498
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /phpinventory/editbrand.php...
CVE-2022-41439
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /phpinventory/edituser.php...
Billing System Project getOrderReport.php SQL Injection Vulnerability
Billing System Project is a billing system project by Mayuri K. Individual developer. Billing System Project v1.0 suffers from a SQL injection vulnerability that stems from a lack of validation of the endDate parameter in getOrderReport.php against an externally entered SQL statement. An attacker...
CVE-2022-43213
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php...
CVE-2022-43213
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php...
Sql injection
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php...
CVE-2022-43213
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php...