EUVD-2025-26334

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Remote SQL injection in Campcodes Hospital Management System 1.0 via Password in Admin Dashboard.

Reporter	Title	Published	Views	Family All 10
GithubExploit	Exploit for Cross-site Scripting in Campcodes Hospital_Management_System	23 Aug 202506:54	–	githubexploit
Circl	CVE-2025-9770	1 Sep 202513:35	–	circl
CNNVD	CampCodes Hospital Management System 安全漏洞	1 Sep 202500:00	–	cnnvd
CVE	CVE-2025-9770	1 Sep 202508:32	–	cve
Cvelist	CVE-2025-9770 Campcodes Hospital Management System Admin Dashboard Login admin sql injection	1 Sep 202508:32	–	cvelist
NVD	CVE-2025-9770	1 Sep 202509:15	–	nvd
OSV	CVE-2025-9770	1 Sep 202509:15	–	osv
Positive Technologies	PT-2025-35470	1 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-9770	3 Sep 202508:34	–	redhatcve
Vulnrichment	CVE-2025-9770 Campcodes Hospital Management System Admin Dashboard Login admin sql injection	1 Sep 202508:32	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "e1c2ed9d-0585-33fd-b4ff-2a507f0f4ba4",
        "vendor": {
          "name": "Campcodes"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "a00c1f5e-ad41-3fea-898e-b1b52d381d09",
        "product": {
          "name": "Hospital Management System"
        },
        "product_version": "1.0"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/Yashh-G/zero-day-research/blob/main/HMS_Admin_Auth_Bypass.pdf
campcodes	www.campcodes.com/

03 Oct 2025 20:07Current

7.5High risk

Vulners AI Score7.5

CVSS 46.9

CVSS 3.17.3 - 9.8

CVSS 27.5

CVSS 37.3

EPSS0.00069

SSVC