CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Thomas Hunter: >> Neoinvoice Security Vulnerabilities

CVE-2012-4673

SQL injection vulnerability in application/controllers/invoice.php in NeoInvoice might allow remote attackers to execute arbitrary SQL commands via vectors involving the sort_col variable in the list_items function, a different vulnerability than CVE-2012-3477.

CVSS Score

7.5

EPSS Score

0.004

Published

2012-08-26

CVE-2012-3477

SQL injection vulnerability in signup_check.php in NeoInvoice allows remote attackers to execute arbitrary SQL commands via the value parameter in a username action.

CVSS Score

7.5

EPSS Score

0.003

Published

2012-08-26

Page 1

Vulnerabilities

Vulnerable Software

Thomas Hunter: >> Neoinvoice Security Vulnerabilities

Products

Pricing

Contact Us