Description

Multiple SQL injection vulnerabilities in FrontAccounting (FA) before 2.3.21 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2014-3973

Related Vulnerabilities

Apache Tomcat Other Vulnerability (CVE-2002-2007)

WordPress Plugin Post Form-Registration Form-Profile Form for User Profiles and Content Forms for User Submissions PHAR Deserialization (2.7.7)

WordPress Plugin Migration, Backup, Staging-WPvivid PHAR Deserialization (0.9.74)

WordPress Plugin PhonePe Payment Solutions Server-Side Request Forgery (1.0.15)

Apache Tomcat Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2021-24122)

Severity

High

Classification

CVE-2014-3973

Tags

Missing Update Known Vulnerabilities