EIP-2026-107942

This exploit demonstrates a SQL injection vulnerability in Invoice Template v1.0 for PHPRunner/ASPRunnerPro/ASPRunner.NET. The vulnerability allows an attacker to inject arbitrary SQL queries via the 'hash' parameter in the 'invoices_view.php' file.