Lucene search
Online Invoicing System Security Vulnerabilities - CVSS Score 9 - 10
cve
BigProf Online Invoicing System before 2.9 suffers from an unauthenticated SQL Injection found in /membership_passwordReset.php (the endpoint that is responsible for issuing self-service password resets). An unauthenticated attacker is able to send a request containing a crafted payload that can re...
9.8CVSS
9.6AI Score
0.002EPSS
2022-09-29 03:15 AM
25