PT-2025-35382 · Sourcecodester · Sourcecodester Water Billing System
Xyz123
·
Published
2025-08-30
·
Updated
2025-08-30
·
CVE-2025-9706
Xyz123
·
Published
2025-08-30
·
Updated
2025-08-30
·
CVE-2025-9706
7.5
High
| Base vector | Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
SourceCodester Water Billing System version 1.0
Description:
A security issue exists in SourceCodester Water Billing System 1.0. The vulnerability is related to SQL injection within an unknown functionality of the file `/edit.php`. Manipulation of the `ID` argument can lead to exploitation. The exploit has been publicly disclosed.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Special Elements Injection
SQL injection