CVE-2025-9492 | Campcodes Online Water Billing System 1.0 /addclient1.php lname sql injection

Inserito da Angelo Barbosa | Ago 26, 2025 | CVE

A vulnerability was found in Campcodes Online Water Billing System 1.0 and classified as critical. This affects an unknown function of the file /addclient1.php. Executing manipulation of the argument lname can lead to sql injection.

This vulnerability is tracked as CVE-2025-9492. The attack can be launched remotely. Moreover, an exploit is present.

Other parameters might be affected as well.

CVE-2025-9492 | Campcodes Online Water Billing System 1.0 /addclient1.php lname sql injection

Post correlati

CVE-2024-2939 | Campcodes Online Examination System 1.0 updateExaminee.php id cross site scripting

CVE-2024-32858 | Dell CPG BIOS prior 2.18.0 input validation (dsa-2024-124)

CVE-2024-38633 | Linux Kernel up to 6.9.3 max3100 uart_register_driver null pointer dereference

CVE-2025-5366 | Zoho ManageEngine Exchange Reporter Plus up to 5722 Folder-wise Read Mail cross site scripting