CVE-2015-5648
CVE-2015-5648 concerns phpRechnung where the vulnerable component is the list.php script. The affected product is phpRechnung, version prior to 1.6.5. The root cause is an SQL injection (CWE-89) in list.php that allows a remote authenticated user to execute arbitrary SQL commands via unspecified ...