Multiple SQL injection vulnerabilities in ModernBill 4.3.2 and earlier allow remote attackers or administrators to execute arbitrary SQL commands via the (1) id parameter in (a) user.php, or (2) where and (3) order parameters to (b) admin.php.
References
Configurations
History
No history.
Information
Published : 2006-04-19 16:06
Updated : 2024-02-04 16:52
NVD link : CVE-2006-1853
Mitre link : CVE-2006-1853
CVE.ORG link : CVE-2006-1853
JSON object : View
Products Affected
moderngigabyte
- modernbill
CWE