Vulnerabilities > Water Billing System Project

DATE CVE VULNERABILITY TITLE RISK
2023-03-27 CVE-2023-27241 Cross-site Scripting vulnerability in Water Billing System Project Water Billing System 1.0
SourceCodester Water Billing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the lastname text box under the Add Client module.
network
low complexity
water-billing-system-project CWE-79
6.1
2022-05-24 CVE-2022-30461 SQL Injection vulnerability in Water Billing System Project Water Billing System 1.0
Water-billing-management-system v1.0 is vulnerable to SQL Injection via /wbms/classes/Master.php?f=delete_client, id
network
low complexity
water-billing-system-project CWE-89
critical
9.8
2022-05-24 CVE-2022-30462 Cross-site Scripting vulnerability in Water Billing System Project Water Billing System 1.0
Water-billing-management-system v1.0 is affected by: Cross Site Scripting (XSS) via /wbms/classes/Users.php?f=save, firstname.
network
low complexity
water-billing-system-project CWE-79
5.4
2021-07-22 CVE-2020-36033 SQL Injection vulnerability in Water Billing System Project Water Billing System 1.0
SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the id parameter to edituser.php.
network
low complexity
water-billing-system-project CWE-89
critical
9.8
2020-11-17 CVE-2020-28183 SQL Injection vulnerability in Water Billing System Project Water Billing System 1.0
SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the username and password parameters to process.php.
network
low complexity
water-billing-system-project CWE-89
critical
9.8