A SQL Injection vulnerability in itsourcecode Billing System 1.0 allows a local attacker to execute arbitrary code in process.php via the username parameter.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/ganzhi-qcy/cve/issues/3 |
History
Thu, 15 Aug 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-94 |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-06-13T00:00:00
Updated: 2024-08-15T15:09:07.349Z
Reserved: 2024-06-10T00:00:00
Link: CVE-2024-37849
Vulnrichment
Updated: 2024-08-02T03:57:39.799Z
NVD
Status : Modified
Published: 2024-06-13T14:15:13.300
Modified: 2024-11-21T09:24:23.887
Link: CVE-2024-37849
Redhat
No data.