CVE-2025-10436 | Campcodes Computer Sales and Inventory System 1.0 sup_searchfrm.php?action=edit ID sql injection

Inserito da Angelo Barbosa | Set 14, 2025 | CVE

A vulnerability was found in Campcodes Computer Sales and Inventory System 1.0. It has been rated as critical. The impacted element is an unknown function of the file /pages/sup_searchfrm.php?action=edit. This manipulation of the argument ID causes sql injection.

The identification of this vulnerability is CVE-2025-10436. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-10436 | Campcodes Computer Sales and Inventory System 1.0 sup_searchfrm.php?action=edit ID sql injection

Post correlati

CVE-2023-25646 | ZTE ZXHN H388X V10.1 AGZHM_1.3.1 Serial Port permissions

CVE-2024-7445 | itsourcecode Ticket Reservation System 1.0 checkout_ticket_save.php data sql injection

CVE-2024-9164 | GitLab Enterprise Edition up to 17.2.8/17.3.4/17.4.1 Pipeline missing authentication (Issue 493946)

CVE-2024-4348 | osCommerce 4 /catalog/all-products cat cross site scripting