Vulnerabilities > Cupidsystems > Myminibill
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-12-04 | CVE-2009-4198 | SQL Injection vulnerability in Cupidsystems Myminibill SQL injection vulnerability in my_orders.php in MyMiniBill allows remote authenticated users to execute arbitrary SQL commands via the orderid parameter in a status action. | 6.5 |