VYPR

Billabear

by Billabear

Source repositories

CVEs (1)

  • CVE-2026-31069HigMay 19, 2026
    risk 0.57cvss 8.8epss 0.00

    BillaBear (all versions prior to Jan 2026) contains a SQL Injection vulnerability in the EventRepository. User-controlled input from metric filter names and aggregation properties is directly interpolated into SQL queries using sprintf() without proper sanitization or identifier…