VYPR

Billing System

by Angeljudesuarez

CVEs (5)

  • CVE-2025-12617HigNov 3, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the file /admin/app/login_crud.php. Executing a manipulation of the argument Password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2025-65379Dec 2, 2025
    risk 0.00cvss epss 0.00

    PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the /admin/password-recovery.php endpoint. Specifically, the username and mobileno parameters accepts unvalidated user input, which is then concatenated directly into a backend SQL query.

  • CVE-2025-65380Dec 2, 2025
    risk 0.00cvss epss 0.00

    PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query.

  • CVE-2024-7913Aug 18, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument lname/fname/mi/address/contact/meterReader leads to sql injection. The attack may…

  • CVE-2024-7839Aug 15, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument owners_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been…