CVEDB API

Vulnerabilities

Vulnerable Software

Netshinesoftware: >> Com Netinvoice >> 1.2.0 Security Vulnerabilities

CVE-2008-7302

SQL injection vulnerability in netinvoice.php in the nBill (com_netinvoice) component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving "knowledge of ... the contents of an encrypted file."

CVSS Score

7.5

EPSS Score

0.003

Published

2011-10-05

CVE-2010-4270

Directory traversal vulnerability in the nBill (com_netinvoice) component before 2.0.9 standard edition, 2.0.10 lite edition, and 1.2_10 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in unspecified vectors related to (1) administrator/components/com_nbill/admin.nbill.php, (2) components/com_nbill/nbill.php, (3) administrator/components/com_netinvoice/admin.netinvoice.php, or (4) components/com_netinvoice/netinvoice.php, as exploited in the wild in November 2010.

CVSS Score

5.0

EPSS Score

0.006

Published

2010-11-17

CVE-2008-3498

SQL injection vulnerability in the nBill (com_netinvoice) component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter in an orders action to index.php. NOTE: some of these details are obtained from third party information.

CVSS Score

7.5

EPSS Score

0.005

Published

2008-08-06

Page 1

Vulnerabilities

Vulnerable Software

Netshinesoftware: >> Com Netinvoice >> 1.2.0 Security Vulnerabilities

Products

Pricing

Contact Us