Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frontaccounting frontaccounting vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2014-125080
A vulnerability has been found in frontaccounting faplanet and classified as critical. This vulnerability affects unknown code. The manipulation leads to path traversal. The patch is identified as a5dcd87f46080a624b1a9ad4b0dd035bbd24ac50. It is recommended to apply a patch to fix...
Faplanet Project Faplanet
4.9
CVSSv3
CVE-2020-21244
An issue exists in FrontAccounting 2.4.7. There is a Directory Traversal vulnerability that can empty folder via admin/inst_lang.php.
Frontaccounting Frontaccounting 2.4.7
9.8
CVSSv3
CVE-2019-5720
includes/db/class.reflines_db.inc in FrontAccounting 2.4.6 contains a SQL Injection vulnerability in the reference field that can allow the malicious user to grab the entire database of the application via the void_transaction.php filterType parameter.
Frontaccounting Frontaccounting 2.4.6
7.5
CVSSv3
CVE-2018-1000890
FrontAccounting 2.4.5 contains a Time Based Blind SQL Injection vulnerability in the parameter "filterType" in /attachments.php that can allow the malicious user to grab the entire database of the application.
Frontaccounting Frontaccounting 2.4.5
8.8
CVSSv3
CVE-2018-7176
FrontAccounting 2.4.3 suffers from a CSRF flaw, which leads to adding a user account via admin/users.php (aka the "add user" feature of the User Permissions page).
Frontaccounting Frontaccounting 2.4.3
1 EDB exploit
NA
CVE-2014-3973
Multiple SQL injection vulnerabilities in FrontAccounting (FA) prior to 2.3.21 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Frontaccounting Frontaccounting 2.3.4
Frontaccounting Frontaccounting 2.3.12
Frontaccounting Frontaccounting 2.3.11
Frontaccounting Frontaccounting 2.3.9
Frontaccounting Frontaccounting 2.3.13
Frontaccounting Frontaccounting 2.3.14
Frontaccounting Frontaccounting 2.3.1
Frontaccounting Frontaccounting 2.3.8
Frontaccounting Frontaccounting
Frontaccounting Frontaccounting 2.3.7
Frontaccounting Frontaccounting 2.3
Frontaccounting Frontaccounting 2.3.19
Frontaccounting Frontaccounting 2.3.5
Frontaccounting Frontaccounting 2.3.18
Frontaccounting Frontaccounting 2.3.2
Frontaccounting Frontaccounting 2.3.17
Frontaccounting Frontaccounting 2.3.3
Frontaccounting Frontaccounting 2.3.0
Frontaccounting Frontaccounting 2.3.16
Frontaccounting Frontaccounting 2.3.15
Frontaccounting Frontaccounting 2.3.6
Frontaccounting Frontaccounting 2.3.10
NA
CVE-2011-3740
FrontAccounting 2.3.1 allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by reporting/includes/fpdi/fpdi2tcpdf_bridge.php and certain other files.
Frontaccounting Frontaccounting 2.3.1
NA
CVE-2009-4046
Multiple SQL injection vulnerabilities in FrontAccounting (FA) 2.2.x prior to 2.2 RC allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to (1) bank_accounts.php, (2) currencies.php, (3) exchange_rates.php, (4) gl_account_types.php, and (5) g...
Frontaccounting Frontaccounting 2.2
NA
CVE-2009-4037
Multiple SQL injection vulnerabilities in FrontAccounting (FA) prior to 2.1.7, and 2.2.x prior to 2.2 RC, allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to (1) admin/db/users_db.inc, and various other .inc and .php files under (2) admin/...
Frontaccounting Frontaccounting 2.0.3
Frontaccounting Frontaccounting 2.1.3
Frontaccounting Frontaccounting 2.0.7
Frontaccounting Frontaccounting 2.1.0
Frontaccounting Frontaccounting 2.0.4
Frontaccounting Frontaccounting 2.0.2
Frontaccounting Frontaccounting 2.0.6
Frontaccounting Frontaccounting 2.1.2
Frontaccounting Frontaccounting 2.0
Frontaccounting Frontaccounting 2.0.5
Frontaccounting Frontaccounting 2.1.4
Frontaccounting Frontaccounting 2.2
Frontaccounting Frontaccounting 2.1
Frontaccounting Frontaccounting 2.1.1
Frontaccounting Frontaccounting 2.1.5
Frontaccounting Frontaccounting 2.0.1
Frontaccounting Frontaccounting
NA
CVE-2009-4045
Multiple SQL injection vulnerabilities in FrontAccounting (FA) prior to 2.1.7 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to various .inc and .php files in (1) reporting/, (2) sales/, (3) sales/includes/, (4) sales/includes/db/, (5) s...
Frontaccounting Frontaccounting 2.0.3
Frontaccounting Frontaccounting 2.1.3
Frontaccounting Frontaccounting 2.0.7
Frontaccounting Frontaccounting 2.1.0
Frontaccounting Frontaccounting 2.0.4
Frontaccounting Frontaccounting 2.0.2
Frontaccounting Frontaccounting 2.0.6
Frontaccounting Frontaccounting 2.1.2
Frontaccounting Frontaccounting 2.0
Frontaccounting Frontaccounting 2.0.5
Frontaccounting Frontaccounting 2.1.4
Frontaccounting Frontaccounting 2.1
Frontaccounting Frontaccounting 2.1.1
Frontaccounting Frontaccounting 2.1.5
Frontaccounting Frontaccounting 2.0.1
Frontaccounting Frontaccounting
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »