2 matches found
CVE-2026-33734
FOSSBilling is a free, open-source billing and client management system. Versions 0.6.0 through 0.7.2 have a SQL injection vulnerability in the Massmailer module filter functionality. An authenticated administrator can supply crafted filter values when updating a mass email message, causing...
CVE-2026-33734
Summary: CVE-2026-33734 affects FOSSBilling. Versions 0.6.0–0.7.2 contain an SQL injection in the Massmailer module’s recipient filter functionality. An authenticated administrator can supply crafted filter values when updating a mass email message, causing untrusted input to be interpolated dire...