3 matches found
CVE-2023-49625 Billing Software v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the partylisteditsubmit.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-49625 Billing Software v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the partylisteditsubmit.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-49625
Summary: CVE-2023-49625 affects Billing Software v1.0, with multiple unauthenticated SQL injection vulnerabilities in the partylist_edit_submit.php resource. The root cause is the lack of validation of the id parameter, which is sent unfiltered to the database. This could enable SQL injection. Do...