Vulnerabilities > Oretnom23 > Budget AND Expense Tracker System > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-21 | CVE-2021-40247 | SQL Injection vulnerability in Oretnom23 Budget and Expense Tracker System 1.0 SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field. | 9.8 |