9 matches found
CVE-2022-30462
Water-billing-management-system v1.0 is affected by: Cross Site Scripting XSS via /wbms/classes/Users.php?f=save, firstname...
CVE-2022-30462
Water-billing-management-system v1.0 is affected by: Cross Site Scripting XSS via /wbms/classes/Users.php?f=save, firstname...
CVE-2022-30461
Water-billing-management-system v1.0 is vulnerable to SQL Injection via /wbms/classes/Master.php?f=deleteclient, id...
Cross site scripting
Water-billing-management-system v1.0 is affected by: Cross Site Scripting XSS via /wbms/classes/Users.php?f=save, firstname...
Sql injection
Water-billing-management-system v1.0 is vulnerable to SQL Injection via /wbms/classes/Master.php?f=deleteclient, id...
CVE-2022-30461
Water-billing-management-system v1.0 is vulnerable to SQL Injection via the URL parameter id in /wbms/classes/Master.php?f=delete_client. The CVE entry (CVE-2022-30461) is supported by multiple connected records (nvd, redhat, cnvd, cve.org) describing SQL injection as the issue and the affected c...
CVE-2022-30462
Water-billing-management-system v1.0 is affected by: Cross Site Scripting XSS via /wbms/classes/Users.php?f=save, firstname...
CVE-2022-30462
Water-billing-management-system v1.0 is affected by Cross-Site Scripting (XSS) via /wbms/classes/Users.php?f=save, firstname. Connected sources confirm the vulnerability vector affecting the Users.php handler and the firstname parameter, with multiple CVE watches reiterating the same issue. The d...
Water-billing-management-system SQL注入漏洞
Water-billing-management-system is a water billing management system. SQL injection vulnerability exists in Water-billing-management-system v1.0. An attacker can exploit this vulnerability to conduct SQL injection attacks via /wbms/classes/Master.php?f=deleteclient...