Unknown · Campcodes Online Water Billing System · CVE-2025-9739
**Name of the Vulnerable Software and Affected Versions**
Campcodes Online Water Billing System version 1.0
**Description**
A SQL injection issue exists due to the manipulation of the `Username` argument in the `/process.php` file. This allows for remote exploitation. The exploit has been publicly disclosed.
**Recommendations**
As a temporary workaround, consider restricting access to the `/process.php` file until a fix is available.
Sanitize the `Username` input to prevent SQL injection attacks.