VDB-338580 | Campcodes Campcodes Supplier Management System 1.0 /admin/view_products.php chkId[] sql injection

Inserito da Angelo Barbosa | Dic 28, 2025 | CVE

A vulnerability has been found in Campcodes Campcodes Supplier Management System 1.0 and classified as critical. Affected is an unknown function of the file /admin/view_products.php. The manipulation of the argument chkId[] leads to sql injection.

It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

VDB-338580 | Campcodes Campcodes Supplier Management System 1.0 /admin/view_products.php chkId[] sql injection

Post correlati

CVE-2024-21752 | Ernest Marcinko Ajax Search Lite Plugin up to 4.11.4 on WordPress cross-site request forgery

CVE-2024-51027 | Ruijie NBR800G NBR_RGOS_11.1(6)B4P9 networksafe.php province Privilege Escalation

CVE-2024-28796 | IBM ClearQuest up to 9.1.0.6 Web UI intended cross site scripting (XFDB-286833)

CVE-2025-27225 | Rocket TRUfusion Enterprise up to 7.10.4.0 Endpoint internal_admin_contact_login.jsp information disclosure