CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8340 – SourceCodester Electric Billing Management System Actions.php sql injection
https://notcve.org/view.php?id=CVE-2024-8340
A vulnerability classified as critical has been found in SourceCodester Electric Billing Management System 1.0. This affects an unknown part of the file /Actions.php?a=login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. • https://github.com/enjoyworld/webray.com.cn/blob/main/cves/Electric%20Billing%20Management%20System/Electric%20Billing%20Managemen%20SQL-inject%20System%20Action.php%20SQL-inject.md https://vuldb.com/?ctiid.276219 https://vuldb.com/?id.276219 https://vuldb.com/?submit.399548 https://www.sourcecodester.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8339 – SourceCodester Electric Billing Management System Connection Code ?page=tracks sql injection
https://notcve.org/view.php?id=CVE-2024-8339
A vulnerability was found in SourceCodester Electric Billing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /?page=tracks of the component Connection Code Handler. The manipulation of the argument code leads to sql injection. • https://github.com/enjoyworld/webray.com.cn/blob/main/cves/Electric%20Billing%20Management%20System/Electric%20Billing%20Managemen%20SQL-inject%20System%20tracks.php%20SQL-inject.md https://vuldb.com/?ctiid.276218 https://vuldb.com/?id.276218 https://vuldb.com/?submit.399540 https://www.sourcecodester.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •