CVE-2025-4492 | Campcodes Online Food Ordering System 1.0 ticket-message.php ticket_id sql injection

Inserito da Angelo Barbosa | Mag 9, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Campcodes Online Food Ordering System 1.0. This issue affects some unknown processing of the file /routers/ticket-message.php. The manipulation of the argument ticket_id leads to sql injection.

The identification of this vulnerability is CVE-2025-4492. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-4492 | Campcodes Online Food Ordering System 1.0 ticket-message.php ticket_id sql injection

Post correlati

CVE-2024-50693 | SunGrow iSolarCloud App userService API Model resource injection

CVE-2024-34703 | randombit botan up to 2.19.3 X.509 Certificate amplification (GHSA-w4g2-7m2h-7xj7)

CVE-2024-11670 | Devolutions Remote Desktop Manager up to 2024.2.21.0 on Windows authorization (DEVO-2024-0015)

CVE-2025-21262 | Microsoft Edge clickjacking