Billing System Project is a billing system project from the personal developer Mayuri K. A SQL injection vulnerability exists in Billing System Project v1.0, which stems from a lack of validation of externally entered SQL statements in the endDate parameter of getOrderReport.php. An attacker could use this vulnerability to obtain sensitive database information.