{"vulnerability": "cve-2023-49639", "sightings": [{"uuid": "082f4f73-ea27-478c-bb3e-ab3157eb41c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49639", "type": "seen", "source": "https://t.me/cibsecurity/74410", "content": "\u203c\ufe0fCVE-2023-49639\u203c\ufe0f\n\nBilling Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customerdetails' parameter of the buyerinvoicesubmit.php resource does not validate the characters received and they are sent unfiltered to the database.  \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-05T01:33:35.000000Z"}, {"uuid": "f0dc6c80-d467-48c5-8c28-4fbfee027a1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49639", "type": "seen", "source": "https://t.me/ctinow/163041", "content": "https://ift.tt/Ix7ZNF6\nCVE-2023-49639", "creation_timestamp": "2024-01-04T15:21:42.000000Z"}, {"uuid": "6eba65d0-fa14-49e6-b98b-13f5b4f2de03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49639", "type": "seen", "source": "https://t.me/arpsyndicate/2530", "content": "#ExploitObserverAlert\n\nCVE-2023-49639\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49639. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customer_details' parameter of the buyer_invoice_submit.php resource does not validate the characters received and they are sent unfiltered to the database.\n\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2024-01-06T12:05:46.000000Z"}]}