7 matches found
CVE-2025-13273
Campcodes School Fees Payment Management System 1.0 is affected by CVE-2025-13273 due to a SQL injection in the /ajax.php?action=delete_payment endpoint caused by unsafely manipulated ID parameters. Remote exploitation is possible, and an exploit has been publicly released. The issue is corrobora...
CVE-2025-10109 Campcodes Online Loan Management System ajax.php sql injection
A vulnerability was determined in Campcodes Online Loan Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=deletepayment. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2022-41515
Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /saccoshield/ajax.php?action=deletepayment...
CVE-2022-41515
Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /saccoshield/ajax.php?action=deletepayment...
CVE-2022-41515
Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /saccoshield/ajax.php?action=deletepayment...
PT-2022-25903 · Unknown · Open Source Sacco Management System
Name of the Vulnerable Software and Affected Versions: Open Source SACCO Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. It can be exploited via the id parameter at the "/sacco shield/ajax.php?action=delete payment" API endpoint. Recommendations:...
Open Source SACCO Management System SQL注入漏洞
Open Source SACCO Management System is an open source SACCO management system by Mayuri K. Individual developer. An SQL injection vulnerability exists in Open Source SACCO Management System v1.0, which originates from a security issue with the id parameter of...