Cyril-Bouthors

**Name of the Vulnerable Software and Affected Versions** fanzila WebFinance version 0.5 **Description** A critical issue affects the processing of the file htdocs/admin/save taxes.php, where the manipulation of the `id` argument leads to sql injection. **Recommendations** For fanzila WebFinance version 0.5, apply the patch 306f170ca2a8203ae3d8f51fb219ba9e05b945e1 to fix this issue. As a temporary workaround, consider restricting access to the `htdocs/admin/save taxes.php` file until the patch is applied.