CVE-2024-37849 | itsourcecode Billing System 1.0 process.php username sql injection

Posted by Angelo Barbosa | Jun 13, 2024 | CVE

A vulnerability, which was classified as critical, has been found in itsourcecode Billing System 1.0. Affected by this issue is some unknown functionality of the file process.php. The manipulation of the argument username leads to sql injection.

This vulnerability is handled as CVE-2024-37849. Attacking locally is a requirement. There is no exploit available.

CVE-2024-37849 | itsourcecode Billing System 1.0 process.php username sql injection

Related Posts

CVE-2024-31208 | element-hq synapse up to 1.105.0 V2 State Resolution Algorithm allocation of resources (GHSA-3h7q-rfh9-xm4v)

CVE-2024-1999 | Kadence Gutenberg Blocks Plugin up to 3.2.25 on WordPress Testimonial Widget cross site scripting

CVE-2023-6801 | Feedzy RSS Aggregator Plugin up to 4.3.2 on WordPress cross site scripting

CVE-2024-27988 | WEN Themes WEN Responsive Columns Plugin up to 1.3.2 on WordPress cross site scripting