CVE-2025-13555 | Campcodes School File Management System 1.0 Login /index.php stud_no sql injection

Inserito da Angelo Barbosa | Nov 22, 2025 | CVE

A vulnerability identified as critical has been detected in Campcodes School File Management System 1.0. Affected is an unknown function of the file /index.php of the component Login. Performing manipulation of the argument stud_no results in sql injection.

This vulnerability is identified as CVE-2025-13555. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-13555 | Campcodes School File Management System 1.0 Login /index.php stud_no sql injection

Post correlati

CVE-2025-54124 | xwiki-platform up to 16.4.6/16.10.4/17.1.x Password Hash exposure of private personal information to an unauthorized actor (GHSA-r38m-cgpg-qj69)

CVE-2025-0283 | Ivanti Connect Secure up to 22.7 stack-based overflow

CVE-2025-6173 | Webkul QloApps 1.6.1 ajax_products_list.php packItself sql injection

CVE-2025-0801 | ratemyagent RateMyAgent Official Plugin up to 1.4.0 on WordPress Setting rma-settings-wizard cross-site request forgery