CVE-2026-0597 | Campcodes Supplier Management System 1.0 edit_profile.php txtRetailerAddress sql injection

Inserito da Angelo Barbosa | Gen 5, 2026 | CVE

A vulnerability was found in Campcodes Supplier Management System 1.0. It has been classified as critical. Affected by this issue is some unknown functionality of the file /retailer/edit_profile.php. This manipulation of the argument txtRetailerAddress causes sql injection.

This vulnerability is registered as CVE-2026-0597. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-0597 | Campcodes Supplier Management System 1.0 edit_profile.php txtRetailerAddress sql injection

Post correlati

CVE-2024-1792 | CMB2 Plugin up to 2.10.1 on WordPress code injection

CVE-2024-8132 | D-Link DNS-1550-04 up to 20240814 HTTP POST Request /cgi-bin/webdav_mgr.cgi webdav_mgr f_path command injection (SAP10383)

CVE-2024-5570 | Simple Photoswipe Plugin up to 0.1 on WordPress Setting access control

CVE-2024-8162 | TOTOLINK T10 AC1200 4.1.8cu.5207 Telnet Service product.ini hard-coded credentials