CVE-2023-49622
- Reference to the description:
- Description:
- Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'itemnameid' parameter of the material_bill.php?action=itemRelation resource does not validate the characters received and they are sent unfiltered to the database.
- Last updated date:
- 01/10/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 01/10/2024
- Reference url to background