1 results (0.001 seconds)

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability classified as critical was found in code-projects Budget Management 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument edit leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/BurakSevben/CVEs/blob/main/Budget%20Management%20App/Budget%20Management%20App%20-%20SQL%20Injection%20-%201.md https://vuldb.com/?ctiid.264745 https://vuldb.com/?id.264745 https://vuldb.com/?submit.335666 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •