Billing System in PHP
by Itsourcecode
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-7913 | 0.00 | — | 0.01 | Aug 18, 2024 | A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument lname/fname/mi/address/contact/meterReader leads to sql injection. The attack may… | |||
| CVE-2024-7839 | 0.00 | — | 0.01 | Aug 15, 2024 | A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument owners_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been… | |||
| CVE-2024-37872 | 0.00 | — | 0.01 | Jul 9, 2024 | SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter. | |||
| CVE-2024-37849 | 0.00 | — | 0.01 | Jun 13, 2024 | A SQL Injection vulnerability in itsourcecode Billing System 1.0 allows a local attacker to execute arbitrary code in process.php via the username parameter. |
- CVE-2024-7913Aug 18, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument lname/fname/mi/address/contact/meterReader leads to sql injection. The attack may…
- CVE-2024-7839Aug 15, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument owners_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been…
- CVE-2024-37872Jul 9, 2024risk 0.00cvss —epss 0.01
SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.
- CVE-2024-37849Jun 13, 2024risk 0.00cvss —epss 0.01
A SQL Injection vulnerability in itsourcecode Billing System 1.0 allows a local attacker to execute arbitrary code in process.php via the username parameter.