CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/04/05 10:45 a.m.•1 views

CVE-2026-5561 Campcodes Complete POS Management and Inventory System Environment Variable SettingsController.php injection

6.5CVSS6.3AI score0.00019EPSS

RedhatCVE•added 2026/03/26 3:18 p.m.•2 views

CVE-2026-3983

A security flaw has been discovered in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This affects an unknown part of the file save-games.php. The manipulation of the argument gamename results in cross site scripting. The attack may be performed from remote. The exploit...

5.1CVSS4.2AI score0.00042EPSS

Exploits0References1

EUVD•added 2026/03/12 6:31 a.m.•2 views

EUVD-2026-11532

EUVD•added 2026/03/12 6:31 a.m.•0 views

Exploits0References6

EUVD-2026-11533

A weakness has been identified in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This vulnerability affects unknown code of the file saveupathlete.php. This manipulation of the argument aname causes cross site scripting. It is possible to initiate the attack remotely. Th...

Vulnrichment•added 2026/03/12 5:2 a.m.•1 views

Exploits0References6

CVE-2026-3984 Campcodes Division Regional Athletic Meet Game Result Matrix System save_up_athlete.php cross site scripting

Cvelist•added 2026/03/12 5:2 a.m.•23 views

CVE-2026-3984 Campcodes Division Regional Athletic Meet Game Result Matrix System save_up_athlete.php cross site scripting

5.1CVSS0.00042EPSS

CVE•added 2026/03/12 5:2 a.m.•7 views

CVE-2026-3984

Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1 is affected by a cross site scripting (XSS) vulnerability in save_up_athlete.php via the a_name parameter. Remote exploitation is possible and public exploits exist. Root cause: inadequate input handling in the PHP file leadi...

Vulnrichment•added 2026/03/12 5:2 a.m.•0 views

CVE-2026-3983 Campcodes Division Regional Athletic Meet Game Result Matrix System save-games.php cross site scripting

Cvelist•added 2026/03/12 5:2 a.m.•24 views

CVE-2026-3983 Campcodes Division Regional Athletic Meet Game Result Matrix System save-games.php cross site scripting

5.1CVSS0.00042EPSS

RedhatCVE•added 2026/01/09 9:35 a.m.•5 views

CVE-2024-34931

A SQL injection vulnerability in /model/updatesubject.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the name parameter...

9.8CVSS8.5AI score0.00122EPSS

Exploits1References1

Vulnrichment•added 2026/01/05 2:32 p.m.•2 views

CVE-2026-0597 Campcodes Supplier Management System edit_profile.php sql injection

A flaw has been found in Campcodes Supplier Management System 1.0. Affected by this issue is some unknown functionality of the file /retailer/editprofile.php. This manipulation of the argument txtRetailerAddress causes sql injection. Remote exploitation of the attack is possible. The exploit has...

6.5CVSS6.4AI score0.0002EPSS

OSV•added 2025/12/29 10:15 p.m.•1 views

CVE-2025-15206

A flaw has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /admin/addarea.php. Executing a manipulation of the argument txtAreaCode can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be us...

9.8CVSS5.7AI score0.0002EPSS

Vulnrichment•added 2025/12/29 9:32 p.m.•1 views

CVE-2025-15206 Campcodes Supplier Management System add_area.php sql injection

7.5CVSS7.1AI score0.0002EPSS

OSV•added 2025/12/29 1:15 p.m.•1 views

CVE-2025-15188

A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affects unknown code of the file /admin/search-invoices.php. Executing a manipulation of the argument searchdata can lead to cross site scripting. The attack can be launched remotel...

4.8CVSS4.1AI score

CVE•added 2025/12/29 12:32 p.m.•6 views

CVE-2025-15188

CVE-2025-15188 affects Campcodes Complete Online Beauty Parlor Management System 1.0. The vulnerability is a cross-site scripting flaw in the file /admin/search-invoices.php triggered by manipulating the searchdata parameter. It can be exploited remotely, and multiple sources indicate the exploit...

4.8CVSS3AI score0.00024EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/12/29 12:32 p.m.•25 views

CVE-2025-15188 Campcodes Complete Online Beauty Parlor Management System search-invoices.php cross site scripting

4.8CVSS0.00024EPSS

RedhatCVE•added 2025/12/22 12:16 a.m.•2 views

CVE-2025-14989

A vulnerability was identified in Campcodes Complete Online Beauty Parlor Management System 1.0. This issue affects some unknown processing of the file /admin/search-invoices.php. Such manipulation leads to sql injection. The attack can be launched remotely. The exploit is publicly available and...

9.8CVSS7.1AI score0.00027EPSS

Exploits1References1

OSV•added 2025/12/21 4:16 a.m.•1 views

CVE-2025-14991

A weakness has been identified in Campcodes Complete Online Beauty Parlor Management System 1.0. The affected element is an unknown function of the file /admin/bwdates-reports-details.php. Executing a manipulation of the argument fromdate can lead to cross site scripting. The attack may be launch...

4.8CVSS4.1AI score

Cvelist•added 2025/12/21 3:2 a.m.•16 views

CVE-2025-14990 Campcodes Complete Online Beauty Parlor Management System view-appointment.php sql injection

A security flaw has been discovered in Campcodes Complete Online Beauty Parlor Management System 1.0. Impacted is an unknown function of the file /admin/view-appointment.php. Performing a manipulation of the argument viewid results in sql injection. The attack may be initiated remotely. The explo...

7.5CVSS0.00027EPSS