CVE-2005-3827
CVE-2005-3827 describes an SQL injection in AgileBill 1.4.92 and earlier, via the id parameter in the product_cat function/endpoint. The vulnerability allows remote attackers to execute arbitrary SQL commands, with CVSS v2 base metrics: AV:N/AC:L/Au:N/C:P/I:P/A:P and a base score of 7.5 (HIGH). A...