Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frontaccounting frontaccounting vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-125080
A vulnerability has been found in frontaccounting faplanet and classified as critical. This vulnerability affects unknown code. The manipulation leads to path traversal. The patch is identified as a5dcd87f46080a624b1a9ad4b0dd035bbd24ac50. It is recommended to apply a patch to fix...
Faplanet Project Faplanet
490
VMScore
CVE-2020-21244
An issue exists in FrontAccounting 2.4.7. There is a Directory Traversal vulnerability that can empty folder via admin/inst_lang.php.
Frontaccounting Frontaccounting 2.4.7
668
VMScore
CVE-2019-5720
includes/db/class.reflines_db.inc in FrontAccounting 2.4.6 contains a SQL Injection vulnerability in the reference field that can allow the malicious user to grab the entire database of the application via the void_transaction.php filterType parameter.
Frontaccounting Frontaccounting 2.4.6
445
VMScore
CVE-2018-1000890
FrontAccounting 2.4.5 contains a Time Based Blind SQL Injection vulnerability in the parameter "filterType" in /attachments.php that can allow the malicious user to grab the entire database of the application.
Frontaccounting Frontaccounting 2.4.5
685
VMScore
CVE-2018-7176
FrontAccounting 2.4.3 suffers from a CSRF flaw, which leads to adding a user account via admin/users.php (aka the "add user" feature of the User Permissions page).
Frontaccounting Frontaccounting 2.4.3
1 EDB exploit
668
VMScore
CVE-2014-3973
Multiple SQL injection vulnerabilities in FrontAccounting (FA) prior to 2.3.21 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Frontaccounting Frontaccounting
Frontaccounting Frontaccounting 2.3.19
Frontaccounting Frontaccounting 2.3.6
Frontaccounting Frontaccounting 2.3.5
Frontaccounting Frontaccounting 2.3.4
Frontaccounting Frontaccounting 2.3.3
Frontaccounting Frontaccounting 2.3.2
Frontaccounting Frontaccounting 2.3.18
Frontaccounting Frontaccounting 2.3.16
Frontaccounting Frontaccounting 2.3.9
Frontaccounting Frontaccounting 2.3.7
Frontaccounting Frontaccounting 2.3.0
Frontaccounting Frontaccounting 2.3
Frontaccounting Frontaccounting 2.3.14
Frontaccounting Frontaccounting 2.3.13
Frontaccounting Frontaccounting 2.3.12
Frontaccounting Frontaccounting 2.3.11
Frontaccounting Frontaccounting 2.3.17
Frontaccounting Frontaccounting 2.3.15
Frontaccounting Frontaccounting 2.3.10
Frontaccounting Frontaccounting 2.3.8
Frontaccounting Frontaccounting 2.3.1
445
VMScore
CVE-2011-3740
FrontAccounting 2.3.1 allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by reporting/includes/fpdi/fpdi2tcpdf_bridge.php and certain other files.
Frontaccounting Frontaccounting 2.3.1
668
VMScore
CVE-2009-4037
Multiple SQL injection vulnerabilities in FrontAccounting (FA) prior to 2.1.7, and 2.2.x prior to 2.2 RC, allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to (1) admin/db/users_db.inc, and various other .inc and .php files under (2) admin/...
Frontaccounting Frontaccounting 2.1
Frontaccounting Frontaccounting 2.1.1
Frontaccounting Frontaccounting 2.1.2
Frontaccounting Frontaccounting 2.1.3
Frontaccounting Frontaccounting 2.1.4
Frontaccounting Frontaccounting 2.0.3
Frontaccounting Frontaccounting 2.0.4
Frontaccounting Frontaccounting 2.0.5
Frontaccounting Frontaccounting 2.0.6
Frontaccounting Frontaccounting 2.0
Frontaccounting Frontaccounting 2.0.2
Frontaccounting Frontaccounting 2.0.7
Frontaccounting Frontaccounting 2.1.0
Frontaccounting Frontaccounting 2.1.5
Frontaccounting Frontaccounting
Frontaccounting Frontaccounting 2.0.1
Frontaccounting Frontaccounting 2.2
668
VMScore
CVE-2009-4045
Multiple SQL injection vulnerabilities in FrontAccounting (FA) prior to 2.1.7 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to various .inc and .php files in (1) reporting/, (2) sales/, (3) sales/includes/, (4) sales/includes/db/, (5) s...
Frontaccounting Frontaccounting 2.1
Frontaccounting Frontaccounting 2.1.1
Frontaccounting Frontaccounting 2.1.2
Frontaccounting Frontaccounting 2.1.3
Frontaccounting Frontaccounting 2.0.3
Frontaccounting Frontaccounting 2.0.4
Frontaccounting Frontaccounting 2.0.5
Frontaccounting Frontaccounting 2.0.6
Frontaccounting Frontaccounting 2.0
Frontaccounting Frontaccounting 2.0.2
Frontaccounting Frontaccounting 2.0.7
Frontaccounting Frontaccounting 2.1.0
Frontaccounting Frontaccounting 2.1.5
Frontaccounting Frontaccounting 2.0.1
Frontaccounting Frontaccounting 2.1.4
Frontaccounting Frontaccounting
668
VMScore
CVE-2009-4046
Multiple SQL injection vulnerabilities in FrontAccounting (FA) 2.2.x prior to 2.2 RC allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to (1) bank_accounts.php, (2) currencies.php, (3) exchange_rates.php, (4) gl_account_types.php, and (5) g...
Frontaccounting Frontaccounting 2.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »