CVE-2025-40731
SQL injection vulnerability in Daily Expense Manager
SQL injection vulnerability in Daily Expense Manager v1.0. This vulnerability allows an attacker to retrieve, create, update and delete databases through the pname, pprice and id parameters in /update.php.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Daily Expense Manager · Daily Expense ManagerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →