CVE-2025-0210 | Campcodes School Faculty Scheduling System 1.0 ajax.php?action=login username sql injection

Inserito da Angelo Barbosa | Gen 3, 2025 | CVE

A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection.

This vulnerability is known as CVE-2025-0210. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-0210 | Campcodes School Faculty Scheduling System 1.0 ajax.php?action=login username sql injection

Post correlati

CVE-2024-51508 | Tiki up to 27.0 External Wiki Index cross site scripting

CVE-2023-51509 | Metagauss RegistrationMagic Plugin up to 5.2.4.1 on WordPress cross site scripting

CVE-2024-23506 | InstaWP Connect Plugin up to 0.1.0.9 on WordPress authorization

CVE-2024-44278 | Apple iOS/iPadOS information disclosure