CVE-2025-11599 | Campcodes Online Apartment Visitor Management System 1.0 /forgot-password.php email sql injection

Inserito da Angelo Barbosa | Ott 10, 2025 | CVE

A vulnerability marked as critical has been reported in Campcodes Online Apartment Visitor Management System 1.0. This impacts an unknown function of the file /forgot-password.php. This manipulation of the argument email causes sql injection.

The identification of this vulnerability is CVE-2025-11599. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-11599 | Campcodes Online Apartment Visitor Management System 1.0 /forgot-password.php email sql injection

Post correlati

CVE-2023-52492 | Linux Kernel up to 5.10.209/5.15.148/6.1.75/6.6.14/6.7.2 dmaengine __dma_async_device_channel_register null pointer dereference

CVE-2024-12746 | Amazon Redshift ODBC Driver 2.1.5.0 Metadata API sql injection

CVE-2025-53788 | Microsoft Windows Subsystem for Linux toctou

CVE-2024-42482 | fish-shop syntax-check up to 1.6.11 Workflow delimiters