Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:33 a.m.5 views

CVE-2024-41618

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...

9.8CVSS8AI score0.00513EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:15 a.m.4 views

CVE-2024-41617

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to Incorrect Access Control. The redirectifnotloggedin function in functionssecurity.php fails to terminate script execution after redirecting unauthenticated users. This flaw allows an unauthenticated attacker to upload arbitrary...

9.8CVSS7.6AI score0.01099EPSS
Exploits0References1
OSV
OSV
added 2024/10/24 10:15 p.m.7 views

CVE-2024-41617

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to Incorrect Access Control. The redirectifnotloggedin function in functionssecurity.php fails to terminate script execution after redirecting unauthenticated users. This flaw allows an unauthenticated attacker to upload arbitrary...

9.8CVSS7.5AI score
Exploits0References4
NVD
NVD
added 2024/10/24 10:15 p.m.8 views

CVE-2024-41618

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...

9.8CVSS0.00513EPSS
Exploits0References4
NVD
NVD
added 2024/10/24 10:15 p.m.12 views

CVE-2024-41617

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to Incorrect Access Control. The redirectifnotloggedin function in functionssecurity.php fails to terminate script execution after redirecting unauthenticated users. This flaw allows an unauthenticated attacker to upload arbitrary...

9.8CVSS0.01099EPSS
Exploits0References4
OSV
OSV
added 2024/10/24 10:15 p.m.8 views

CVE-2024-41618

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...

9.8CVSS7.9AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/24 12:0 a.m.8 views

CVE-2024-41618

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...

8.3AI score0.00513EPSS
Exploits0References4
CVE
CVE
added 2024/10/24 12:0 a.m.47 views

CVE-2024-41618

CVE-2024-41618 affects Money Manager EX WebApp (web-money-manager-ex) 1.2.2 and is caused by improper sanitization of the TrDeleteArr parameter in transaction_delete_group, allowing SQL injection. The vulnerability is described consistently across Red Hat, NVD, OSV, CNNVD, CVEList/CVE pages, and ...

9.8CVSS7.5AI score0.00513EPSS
Exploits0References4
CVE
CVE
added 2024/10/24 12:0 a.m.60 views

CVE-2024-41617

Money Manager EX WebApp (web-money-manager-ex) 1.2.2 is vulnerable to Incorrect Access Control: the redirect_if_not_loggedin function in functions_security.php does not terminate after redirecting unauthenticated users. This allows an unauthenticated attacker to upload arbitrary files, potentiall...

9.8CVSS7.3AI score0.01099EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.3 views

Money Manager EX WebApp 安全漏洞

Money Manager EX WebApp is an open source personal finance management software from Money Manager EX. A security vulnerability exists in Money Manager EX WebApp version 1.2.2, which stems from an access control error, where the function fails to terminate script execution after redirecting an...

9.8CVSS8.4AI score0.01099EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/10/24 12:0 a.m.11 views

CVE-2024-41618

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...

0.00513EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.2 views

web-money-manager-ex 安全漏洞

web-money-manager-ex is a personal money management system from Money Manager Ex. A security vulnerability exists in web-money-manager-ex version 1.2.2, which stems from improper cleanup of user input in the TrDeleteArr parameter, making it susceptible to SQL injection attacks...

9.8CVSS7.7AI score0.00513EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/24 12:0 a.m.28 views

CVE-2024-41617

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to Incorrect Access Control. The redirectifnotloggedin function in functionssecurity.php fails to terminate script execution after redirecting unauthenticated users. This flaw allows an unauthenticated attacker to upload arbitrary...

7.9AI score0.01099EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/10/24 12:0 a.m.4 views

PT-2024-29465 · Unknown · Money Manager Ex Webapp

Name of the Vulnerable Software and Affected Versions: Money Manager EX WebApp versions 1.2.2 Description: The issue is related to Incorrect Access Control. The redirect if not loggedin function in functions security.php fails to terminate script execution after redirecting unauthenticated users...

9.8CVSS7.7AI score0.01099EPSS
Exploits0References9
hackapp
hackapp
added 2017/04/20 10:31 a.m.14 views

Expense IQ Money Manager - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Expense IQ Money Manager published at the 'play' market has multiple vulnerabilities...

0.7AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2017/04/20 10:29 a.m.20 views

Monefy - Money Manager - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Monefy - Money Manager published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/07/27 4:11 p.m.13 views

SmartSpends: Money Manager App - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application SmartSpends: Money Manager App published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:1 a.m.12 views

My Finance Coach Money Manager - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application My Finance Coach Money Manager published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/10/19 12:0 a.m.35 views

Sahar Money Manager Insecure Library Loading Vulnerability

A vulnerability has been discovered in Sahar Money Manager, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: unicows.dll This can be exploited ...

2.4AI score
Exploits0
Rows per page
Query Builder