Critical severity9.8NVD Advisory· Published Jan 4, 2024· Updated Jun 17, 2026
CVE-2023-49625
CVE-2023-49625
Description
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the partylist_edit_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 1.0
- Range: 1.0
Patches
Vulnerability mechanics
References
2- fluidattacks.com/advisories/zimerman/nvdExploitThird Party Advisory
- www.kashipara.comnvdProduct
News mentions
0No linked articles in our index yet.