CVE-2024-37872

Published July 9th, 2024

View on NVD ↗

CVSS v3

8.1

HIGH

CVSS v2

N/A

Affected

1

PROJECT

Description

SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.

GitHub