Vulnerabilities > Billing System Project Project

DATE CVE VULNERABILITY TITLE RISK
2022-11-23 CVE-2022-43213 SQL Injection vulnerability in Billing System Project Billing System Project 1.0
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php.
network
low complexity
billing-system-project-project CWE-89
critical
9.8
2022-09-30 CVE-2022-41437 Unrestricted Upload of File with Dangerous Type vulnerability in Billing System Project Billing System Project 1.0
Billing System Project v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component /php_action/createProduct.php.
network
low complexity
billing-system-project-project CWE-434
7.2
2022-09-30 CVE-2022-41439 SQL Injection vulnerability in Billing System Project Billing System Project 1.0
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /phpinventory/edituser.php.
network
low complexity
billing-system-project-project CWE-89
7.2
2022-09-30 CVE-2022-41440 SQL Injection vulnerability in Billing System Project Billing System Project 1.0
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /phpinventory/editcategory.php.
network
low complexity
billing-system-project-project CWE-89
7.2