CVE-2025-7217 | Campcodes Payroll Management System 1.0 ajax.php?action=save_position ID sql injection

Inserito da Angelo Barbosa | Lug 7, 2025 | CVE

A vulnerability has been found in Campcodes Payroll Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=save_position. The manipulation of the argument ID leads to sql injection.

This vulnerability was named CVE-2025-7217. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-7217 | Campcodes Payroll Management System 1.0 ajax.php?action=save_position ID sql injection

Post correlati

CVE-2025-1947 | hzmanyun Education and Training System 2.1.3 UploadImageController.java scorm param command injection

CVE-2023-6380 | Alkacon Open CMS 14/15 URL redirect

CVE-2024-43611 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 Routing/Remote Access Service heap-based overflow

CVE-2024-24578 | jens-maus RaspberryMatic prior 3.75.6.20240316 path traversal (GHSA-q967-q4j8-637h)