Lucene search
K

10 matches found

OSV
OSV
added 2025/09/22 7:15 a.m.4 views

CVE-2025-10786

A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=deleteuser. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...

9.8CVSS5.8AI score0.00521EPSS
Exploits1References5
NVD
NVD
added 2025/09/22 6:15 a.m.6 views

CVE-2025-10785

A vulnerability was detected in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown part of the file /manageuser.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

9.8CVSS0.00521EPSS
Exploits1References7
NVD
NVD
added 2025/09/16 9:15 p.m.4 views

CVE-2025-10565

A vulnerability was determined in Campcodes Grocery Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=deletereceiving. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from remote...

9.8CVSS0.00387EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/09/16 8:32 p.m.10 views

CVE-2025-10564 Campcodes Grocery Sales and Inventory System ajax.php sql injection

A vulnerability was found in Campcodes Grocery Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=deletecategory. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS0.00387EPSS
Exploits1References5
CVE
CVE
added 2025/09/16 8:2 p.m.19 views

CVE-2025-10563

CVE-2025-10563 affects Campcodes Grocery Sales and Inventory System 1.0. The bug is in /ajax.php?action=save_category where manipulating the ID parameter enables SQL injection. Exploitation is remote and publicly disclosed. Impact is described as high for confidentiality, integrity, and availabil...

9.8CVSS7.3AI score0.00438EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.4 views

CampCodes Grocery Sales and Inventory System SQL注入漏洞

CampCodes Grocery Sales and Inventory System is a grocery sales and inventory system from CampCodes Philippines. A SQL injection vulnerability exists in CampCodes Grocery Sales and Inventory System version 1.0, which stems from incorrect manipulation of the parameter ID in file/ajax.php, which...

9.8CVSS7.8AI score0.00438EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.3 views

CampCodes Grocery Sales and Inventory System SQL注入漏洞

CampCodes Grocery Sales and Inventory System is a grocery sales and inventory system from CampCodes Philippines. A SQL injection vulnerability exists in CampCodes Grocery Sales and Inventory System version 1.0, which stems from incorrect manipulation of the parameter ID in file/ajax.php, which...

9.8CVSS7.8AI score0.00387EPSS
Exploits1References6
CVE
CVE
added 2025/09/14 11:32 p.m.17 views

CVE-2025-10416

Campcodes Grocery Sales and Inventory System 1.0 has a SQL injection vulnerability in /ajax.php?action=delete_supplier caused by unsafely handling the ID parameter. This remote‑accessible flaw can lead to unauthorized database access and manipulation; public exploits exist. Root cause: improper i...

9.8CVSS7.3AI score0.00387EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/09/14 12:0 a.m.4 views

CampCodes Grocery Sales and Inventory System SQL注入漏洞

CampCodes Grocery Sales and Inventory System is a grocery sales and inventory system from CampCodes Philippines. A SQL injection vulnerability exists in Campcodes Grocery Sales and Inventory System version 1.0, which stems from incorrect manipulation of the parameter ID in file/ajax.php, which...

9.8CVSS7.8AI score0.00383EPSS
Exploits1References6
OSV
OSV
added 2025/09/06 11:15 a.m.5 views

CVE-2025-10030

A weakness has been identified in Campcodes Grocery Sales and Inventory System 1.0. This issue affects some unknown processing of the file /ajax.php?action=savereceiving. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been...

9.8CVSS5.8AI score0.00441EPSS
Exploits1References5
Rows per page
Query Builder