PT-2025-44775 · Unknown · Water Management System
Published
2025-11-03
·
Updated
2025-11-07
·
CVE-2025-63448
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Water Management System version 1.0
Description
The Water Management System version 1.0 is susceptible to Cross Site Scripting (XSS). The issue occurs in the
/edit product.php?id=1 API endpoint. The id parameter is potentially vulnerable. XSS allows attackers to inject malicious scripts into web pages viewed by other users.Recommendations
Update to a newer version that contains a fix for this vulnerability.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Water Management System