9 results (0.001 seconds)

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /view_bill.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://vuldb.com/?id.273200 https://vuldb.com/?ctiid.273200 https://vuldb.com/?submit.382329 https://gist.github.com/topsky979/c11fd2c1b9027831031de2e58cbf5ff3 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability has been found in SourceCodester Establishment Billing Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /manage_billing.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://vuldb.com/?id.273199 https://vuldb.com/?ctiid.273199 https://vuldb.com/?submit.382328 https://gist.github.com/topsky979/df642bf14cce32c58d4805b6f6cf44e0 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability, which was classified as critical, was found in SourceCodester Establishment Billing Management System 1.0. Affected is an unknown function of the file /manage_block.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://gist.github.com/topsky979/0d5ec3fac4f1fc895478344be5521575 https://vuldb.com/?ctiid.273198 https://vuldb.com/?id.273198 https://vuldb.com/?submit.382327 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability classified as critical has been found in SourceCodester Establishment Billing Management System 1.0. This affects an unknown part of the file /manage_tenant.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://gist.github.com/topsky979/e40f691866138ea1abf3ca452c4ae3ac https://vuldb.com/?ctiid.273159 https://vuldb.com/?id.273159 https://vuldb.com/?submit.381487 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /manage_payment.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. • https://gist.github.com/topsky979/7f65e9704b8650e6bee74190f96d21e3 https://vuldb.com/?ctiid.273158 https://vuldb.com/?id.273158 https://vuldb.com/?submit.381471 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •