CVE-2025-5298 | Campcodes Online Hospital Management System 1.0 betweendates-detailsreports.php fromdate/todate sql injection

Inserito da Angelo Barbosa | Mag 28, 2025 | CVE

A vulnerability, which was classified as critical, was found in Campcodes Online Hospital Management System 1.0. Affected is an unknown function of the file /admin/betweendates-detailsreports.php. The manipulation of the argument fromdate/todate leads to sql injection.

This vulnerability is traded as CVE-2025-5298. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-5298 | Campcodes Online Hospital Management System 1.0 betweendates-detailsreports.php fromdate/todate sql injection

Post correlati

CVE-2025-22226 | VMware Workstation out-of-bounds

CVE-2024-51905 | Ravi & Suma RSV PDF Preview Plugin up to 1.0 on WordPress cross site scripting

CVE-2025-4405 | Hot Random Image Plugin up to 1.9.2 on WordPress Link cross site scripting

CVE-2023-7009 | Kontrol Lux Lock Bluetooth Low Energy missing encryption (VU#949046)