CVE-2025-13554 | Campcodes Supplier Management System 1.0 Login /index.php txtUsername sql injection

Inserito da Angelo Barbosa | Nov 22, 2025 | CVE

A vulnerability categorized as critical has been discovered in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /index.php of the component Login. Such manipulation of the argument txtUsername leads to sql injection.

This vulnerability is referenced as CVE-2025-13554. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-13554 | Campcodes Supplier Management System 1.0 Login /index.php txtUsername sql injection

Post correlati

CVE-2024-27309 | Apache Kafka 3.5.0/3.5.1/3.5.2/3.6.0/3.6.1 KRaft Mode Migration access control

CVE-2024-0409 | X.org X11 Server Privates unknown vulnerability

CVE-2024-31168 | Open Networking Foundation libfluid 0.1.0 unpack out-of-bounds

CVE-2023-48711 | cjvnjde google-translate-api-browser up to 4.1.2 Web API server-side request forgery (GHSA-4233-7q5q-m7p6)