396 matches found
CVE-2025-65380
PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query...
CVE-2025-65379
PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the /admin/password-recovery.php endpoint. Specifically, the username and mobileno parameters accepts unvalidated user input, which is then concatenated directly into a backend SQL query...
CVE-2025-65380
PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query...
CVE-2025-65379
PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the /admin/password-recovery.php endpoint. Specifically, the username and mobileno parameters accepts unvalidated user input, which is then concatenated directly into a backend SQL query...
PHPGurukul Billing System 安全漏洞
Billing System is a billing system. The Billing System suffers from a SQL injection vulnerability that stems from the username and mobileno parameters in the /admin/password-recovery.php endpoint not validating user input. An attacker can use this vulnerability to steal, tamper, or delete sensiti...
CVE-2025-65380
PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query...
PHPGurukul Billing System 安全漏洞
Billing System is a billing system. The Billing System suffers from a SQL injection vulnerability that originates when the username parameter in the admin/index.php endpoint is spliced directly into a back-end SQL query without validation. An attacker can exploit this vulnerability by submitting ...
CVE-2025-65380
The CVE-2025-65380 entry concerns PHPGurukul Billing System 1.0 with a SQL Injection in admin/index.php, where the username parameter is concatenated into a backend SQL query. Multiple connected sources describe the vulnerability and confirm that an attacker could exploit it to run arbitrary SQL ...
Malicious code in manual-billing-system-miniapp-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fbe247429665dfb3140f405fe662a2c53590e8be9cfeca89a868c826a4fe04f The package manual-billing-system-miniapp-api was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198719
Malicious code in manual-billing-system-miniapp-api npm...
CVE-2025-12617
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the file /admin/app/logincrud.php. Executing a manipulation of the argument Password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be use...
CVE-2025-12617
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the file /admin/app/logincrud.php. Executing a manipulation of the argument Password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be use...
CVE-2025-12617
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the file /admin/app/logincrud.php. Executing a manipulation of the argument Password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be use...
CVE-2025-12617 itsourcecode Billing System login_crud.php sql injection
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the file /admin/app/logincrud.php. Executing a manipulation of the argument Password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be use...
CVE-2025-12617 itsourcecode Billing System login_crud.php sql injection
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the file /admin/app/logincrud.php. Executing a manipulation of the argument Password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be use...
EUVD-2025-37471
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the file /admin/app/logincrud.php. Executing manipulation of the argument Password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be used...
CVE-2025-12617
The CVE-2025-12617 issue affects itsourcecode Billing System 1.0, specifically the file /admin/app/login_crud.php. The vulnerability stems from improper handling of the Password argument, enabling SQL injection. It is exploitable remotely, and public exploits have been published. Multiple connect...
PT-2025-44750
Name of the Vulnerable Software and Affected Versions itsourcecode Billing System version 1.0 Description A flaw exists in itsourcecode Billing System 1.0. The issue affects an unknown function within the /admin/app/login crud.php file. Manipulation of the Password argument can lead to a SQL...
itsourcecode Billing System SQL注入漏洞
itsourcecode Billing System is itsourcecode open source a system developed in PHP MySQL database using HTML, CSS, Bootstrap, JavaScript, Ajax, J Query and Modal. this PH Billing System project contains an administrator side. This PH Billing System project includes an administrator side where the...
EUVD-2011-4665
Malware in sbrugna...