CVE-2025-10851 | Campcodes Gym Management System 1.0 /ajax.php?action=login Username sql injection

Inserito da Angelo Barbosa | Set 22, 2025 | CVE

A vulnerability has been found in Campcodes Gym Management System 1.0 and classified as critical. Impacted is an unknown function of the file /ajax.php?action=login. Performing manipulation of the argument Username results in sql injection.

This vulnerability is cataloged as CVE-2025-10851. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-10851 | Campcodes Gym Management System 1.0 /ajax.php?action=login Username sql injection

Post correlati

CVE-2024-10946 | Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System sql injection

CVE-2024-26337 | swftools 0.9.2 swftools/src/swfc.c s_font memory corruption (Issue 223)

CVE-2025-22304 | osamaesh WP Visitor Statistics Plugin up to 7.3 on WordPress authorization

CVE-2024-48827 | sbondCo Watcharr 1.43.0 Change Password Privilege Escalation