A vulnerability identified as critical has been detected in Campcodes Computer Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/us_edit1.php. The manipulation of the argument ID leads to sql injection.

This vulnerability is referenced as CVE-2025-11039. Remote exploitation of the attack is possible. Furthermore, an exploit is available.