CVE-2025-4491 | Campcodes Online Food Ordering System 1.0 ticket-status.php ticket_id sql injection

Inserito da Angelo Barbosa | Mag 9, 2025 | CVE

A vulnerability classified as critical was found in Campcodes Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /routers/ticket-status.php. The manipulation of the argument ticket_id leads to sql injection.

This vulnerability was named CVE-2025-4491. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-4491 | Campcodes Online Food Ordering System 1.0 ticket-status.php ticket_id sql injection

Post correlati

CVE-2023-41314 | Apache Doris up to 2.0.3 API get_log_file improper authentication

CVE-2023-47559 | QNAP QuMagie 2.2.1 cross site scripting (qsa-23-23)

CVE-2018-25099 | CryptX up to 0.061 on Perl Tag Privilege Escalation (Issue 47)

CVE-2024-37393 | SecurEnvoy MFA prior 9.4.514 Desktop Service /secserver ldap injection