Water Billing System Project Water Billing System — known CVE vulnerabilities
Every CVE whose affected-product data names Water Billing System Project Water Billing System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-28183 — CVSS 9.8 (critical): SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the username and password parameters to process.php.
CVE-2020-36033 — CVSS 9.8 (critical): SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the id parameter to edituser.php.
CVE-2022-30461 — CVSS 9.8 (critical): Water-billing-management-system v1.0 is vulnerable to SQL Injection via /wbms/classes/Master.php?f=delete_client, id
CVE-2023-27241 — CVSS 6.1 (medium): SourceCodester Water Billing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the lastname text box…
CVE-2022-30462 — CVSS 5.4 (medium): Water-billing-management-system v1.0 is affected by: Cross Site Scripting (XSS) via /wbms/classes/Users.php?f=save, firstname.