10 matches found
CVE-2025-9794
CVE-2025-9794 affects Campcodes Computer Sales and Inventory System 1.0. A SQL injection vulnerability exists in the /pages/pos_transac.php?action=add endpoint, exploitable by manipulating the cash/firstname parameter. Attacks may be performed remotely, and multiple parameters could be affected. ...
CVE-2025-11039
The CVE-2025-11039 affects Campcodes Computer Sales and Inventory System v1.0. The vulnerability comes from improper handling of the ID parameter in the file /pages/us_edit1.php, enabling SQL injection via that argument. Remote exploitation is possible and exploits have been publicly disclosed. M...
CVE-2025-10829
CVE-2025-10829 affects Campcodes Computer Sales and Inventory System 1.0. The vulnerability arises from manipulation of the ID parameter in the file /pages/sup_edit1.php, enabling SQL injection. Remote exploitation is possible and the exploit is public. Multiple connected sources corroborate the ...
CVE-2025-10830
CVE-2025-10830 affects Campcodes Computer Sales and Inventory System 1.0. The vulnerability is in the /pages/inv_edit1.php handling of the idd parameter, where manipulation can cause a SQL injection. It is described as exploitable remotely and with a published exploit. Connected documents corrobo...
CVE-2025-10435
The CVE-2025-10435 affects Campcodes Computer Sales and Inventory System 1.0. The vulnerability is a SQL injection in an unknown function of the file /pages/cust_edit1.php, triggered by manipulating the ID parameter. It can be exploited remotely, and the exploit has been released publicly. Multip...
CVE-2025-10831
CVE-2025-10831 concerns Campcodes Computer Sales and Inventory System 1.0. The vulnerability targets an unknown function in the file /pages/pro_edit1.php , where manipulation of the prodcode argument enables a SQL injection . The issue is described as exploitable remotely, with the exploit disclo...
CVE-2025-10436
CVE-2025-10436 affects Campcodes Computer Sales and Inventory System 1.0. The vulnerability is a SQL injection in the unknown function of /pages/sup_searchfrm.php?action=edit, triggered by manipulating the ID parameter. It is exploitable remotely, and public exploit access is noted. Multiple conn...
CVE-2025-10446
CVE-2025-10446 affects Campcodes Computer Sales and Inventory System 1.0. The vulnerability is an SQL injection in an unknown function of the file /pages/cust_searchfrm.php?action=edit, triggered by manipulating the ID parameter. Exploitation can be conducted remotely and the exploit has been pub...
CVE-2025-11109
CVE-2025-11109 affects Campcodes Computer Sales and Inventory System 1.0. The vulnerability is a SQL injection in the parameter ID of the file /pages/us_edit.php?action=edit, allowing remote exploitation. Public exploits exist. Several sources corroborate the flaw and its remote exploitability, w...
CVE-2025-10445
The CVE-2025-10445 entry concerns Campcodes Computer Sales and Inventory System 1.0. The vulnerability targets the /pages/us_transac.php?action=add endpoint, where manipulating the Username parameter can trigger an SQL injection. Public exploitation is indicated in the sources. The issue is tied ...