2 matches found
CVE-2024-8340
CVE-2024-8340 affects SourceCodester Electric Billing Management System 1.0. The vulnerability is a SQL injection in the /Actions.php?a=login endpoint caused by unsafely handling the username parameter, permitting remote exploitation. Public disclosures exist, and several sources (NVD, Red Hat, C...
CVE-2024-8339
CVE-2024-8339 affects SourceCodester Electric Billing Management System 1.0. The vulnerability is a SQL injection in the file /?page=tracks within the Connection Code Handler, triggered by manipulating the code parameter. It is exploitable remotely, with the exploit publicly disclosed. Multiple s...