CVE-2024-0494

CVE-2024-0494 affects Kashipara Billing Software 1.0, specifically the HTTP POST Request Handler’s material_bill.php. The vulnerability arises from improper handling of the itemtypeid in the POST data, enabling SQL injection that can be triggered remotely. Public exploit information has been disc...

CVE-2024-0493 Kashipara Billing Software HTTP POST Request submit_delivery_list.php sql injection

A vulnerability, which was classified as critical, has been found in Kashipara Billing Software 1.0. Affected by this issue is some unknown functionality of the file submitdeliverylist.php of the component HTTP POST Request Handler. The manipulation of the argument customerdetails leads to sql...

CVE-2024-0493 Kashipara Billing Software HTTP POST Request submit_delivery_list.php sql injection

A vulnerability, which was classified as critical, has been found in Kashipara Billing Software 1.0. Affected by this issue is some unknown functionality of the file submitdeliverylist.php of the component HTTP POST Request Handler. The manipulation of the argument customerdetails leads to sql...

CVE-2024-0492

A vulnerability classified as critical was found in Kashipara Billing Software 1.0. Affected by this vulnerability is an unknown functionality of the file buyerdetailsubmit.php of the component HTTP POST Request Handler. The manipulation of the argument gstnno leads to sql injection. The attack c...

Sql injection

A vulnerability classified as critical was found in Kashipara Billing Software 1.0. Affected by this vulnerability is an unknown functionality of the file buyerdetailsubmit.php of the component HTTP POST Request Handler. The manipulation of the argument gstnno leads to sql injection. The attack c...

CVE-2024-0492 Kashipara Billing Software HTTP POST Request buyer_detail_submit.php sql injection

A vulnerability classified as critical was found in Kashipara Billing Software 1.0. Affected by this vulnerability is an unknown functionality of the file buyerdetailsubmit.php of the component HTTP POST Request Handler. The manipulation of the argument gstnno leads to sql injection. The attack c...

CVE-2024-0492

CVE-2024-0492 affects Kashipara Billing Software 1.0. The vulnerability is a SQL injection in the GSTN_NO parameter of Buyer_detail_submit.php (HTTP POST Request Handler) that can be triggered remotely. Multiple sources corroborate a critical severity (NVD CVSS 3.1 base score 9.8; other CVSS vect...

CVE-2024-0483

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...

Sql injection

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...

Sql injection

A vulnerability classified as critical has been found in Taokeyun up to 1.0.5. This affects the function index of the file application/index/controller/app/Video.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. It is possible to initiate...

CVE-2024-0483 Taokeyun HTTP POST Request Task.php index sql injection

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...

CVE-2024-0483 Taokeyun HTTP POST Request Task.php index sql injection

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...

CVE-2024-0483

Taokeyun up to version 1.0.5 is affected by a SQL injection in the HTTP POST Request Handler, specifically the Task.php index function where the cid argument is manipulated. The vulnerability can be exploited remotely and, according to sources, has been publicly disclosed. The issue’s impact is d...

CVE-2024-0482 Taokeyun HTTP POST Request Video.php index sql injection

A vulnerability classified as critical has been found in Taokeyun up to 1.0.5. This affects the function index of the file application/index/controller/app/Video.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. It is possible to initiate...

CVE-2024-0482 Taokeyun HTTP POST Request Video.php index sql injection

A vulnerability classified as critical has been found in Taokeyun up to 1.0.5. This affects the function index of the file application/index/controller/app/Video.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. It is possible to initiate...

CVE-2024-0482

Summary of findings (CVE-2024-0482): Taokeyun up to 1.0.5 is affected by a vulnerability in the HTTP POST Request Handler, specifically the function index within Video.php. The issue arises from manipulating the parameter cid , leading to an SQL injection. The vulnerability is exploitable remotel...

Sql injection

A vulnerability was found in Taokeyun up to 1.0.5. It has been rated as critical. Affected by this issue is the function shopGoods of the file application/index/controller/app/store/Goods.php of the component HTTP POST Request Handler. The manipulation of the argument keyword leads to sql...

CVE-2024-0481 Taokeyun HTTP POST Request Goods.php shopGoods sql injection

A vulnerability was found in Taokeyun up to 1.0.5. It has been rated as critical. Affected by this issue is the function shopGoods of the file application/index/controller/app/store/Goods.php of the component HTTP POST Request Handler. The manipulation of the argument keyword leads to sql...

CVE-2024-0481 Taokeyun HTTP POST Request Goods.php shopGoods sql injection

A vulnerability was found in Taokeyun up to 1.0.5. It has been rated as critical. Affected by this issue is the function shopGoods of the file application/index/controller/app/store/Goods.php of the component HTTP POST Request Handler. The manipulation of the argument keyword leads to sql...

CVE-2024-0481

Taokeyun up to version 1.0.5 contains a SQL injection in the shopGoods function (application/index/controller/app/store/Goods.php) triggered via the keyword parameter in HTTP POST requests. The vulnerability is exploitable remotely, and public exploit details have been disclosed. The CVE entry no...