Security Advisory

CVE-2023-49641

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-12 23:34:40

Last updated 2025-05-13 14:07:46

Assigner Fluid Attacks

State PUBLISHED

Description

Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The username parameter of the loginCheck.php resource does not validate the characters received and they are sent unfiltered to the database.

← Browse all CVEs View on cve.org ↗