6 matches found
CVE-2023-49639
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customerdetails' parameter of the buyerinvoicesubmit.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-49639
creationtimestamp| type| source ---|---|--- 2024-01-04 15:21:42+00:00| seen| https://t.me/ctinow/163041 2024-01-05 01:33:35+00:00| seen| https://t.me/cibsecurity/74410 2024-01-06 12:05:46+00:00| seen| https://t.me/arpsyndicate/2530...
CVE-2023-49639
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customerdetails' parameter of the buyerinvoicesubmit.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-49639 Billing Software v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customerdetails' parameter of the buyerinvoicesubmit.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-49639
The CVE-2023-49639 issue affects Billing Software v1.0, where the vulnerable component is the customer_details parameter of buyer_invoice_submit.php. The root cause is lack of input validation, allowing unauthenticated SQL Injection by sending unfiltered data to the database. Documented impact is...
CVE-2023-49639 Billing Software v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customerdetails' parameter of the buyerinvoicesubmit.php resource does not validate the characters received and they are sent unfiltered to the database...