CVE-2025-9691
CVE-2025-9691 affects Campcodes Online Shopping System 1.0; in /login.php, manipulating the Password argument enables SQL injection. This remote flaw is supported by multiple sources (NVD/Red Hat and others) and, per PT-2025-35361, a temporary mitigation is to restrict access to /login.php. Explo...