Vulnerabilities > Cupidsystems > Myminibill
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-12-04 | CVE-2009-4198 | SQL Injection vulnerability in Cupidsystems Myminibill SQL injection vulnerability in my_orders.php in MyMiniBill allows remote authenticated users to execute arbitrary SQL commands via the orderid parameter in a status action. | 6.5 |