CVE-2024-37872

Publication date

2024-07-09 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.