CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Frontaccounting: >> Frontaccounting >> 2.4.5 Security Vulnerabilities

CVE-2018-1000890

FrontAccounting 2.4.5 contains a Time Based Blind SQL Injection vulnerability in the parameter "filterType" in /attachments.php that can allow the attacker to grab the entire database of the application.

CVSS Score

7.5

EPSS Score

0.007

Published

2018-12-28

Page 1

Vulnerabilities

Vulnerable Software

Frontaccounting: >> Frontaccounting >> 2.4.5 Security Vulnerabilities

Products

Pricing

Contact Us