Lucene search
K
CampcodesCourier Management System

10 matches found

CVE
CVE
added 2025/07/26 1:2 p.m.27 views

CVE-2025-8190

The CVE-2025-8190 entry concerns Campcodes Courier Management System 1.0. The affected component is the /print_pdets.php processing logic, where manipulation of the ids parameter leads to SQL injection. Documents indicate the issue can be exploited remotely and that the exploit has been publicly ...

8.8CVSS6.8AI score0.00386EPSS
CVE
CVE
added 2025/07/28 3:2 a.m.25 views

CVE-2025-8254

CVE-2025-8254 affects Campcodes Courier Management System 1.0 via SQL injection in the /view_parcel.php file, caused by unsafely handling the ID parameter. The vulnerability is exploitable remotely and has public exploits; risk is described as critical by multiple sources. Attacks could disclose ...

9.8CVSS7.8AI score0.00328EPSS
CVE
CVE
added 2025/07/26 11:2 a.m.24 views

CVE-2025-8186

CVE-2025-8186 affects Campcodes Courier Management System 1.0. A SQL injection vulnerability exists in an unknown function of /edit_branch.php triggered by manipulating the ID parameter. Exploitation can be performed remotely and public disclosure exists. The CVE has various scores indicating MED...

8.8CVSS6.8AI score0.00356EPSS
CVE
CVE
added 2025/07/27 10:2 a.m.21 views

CVE-2025-8229

CVE-2025-8229 affects Campcodes Courier Management System 1.0. The vulnerability is a SQL injection in the file /parcel_list.php caused by manipulating the parameter s . It can be exploited remotely and the exploit has been publicly disclosed. Multiple connected sources corroborate the issue and ...

8.8CVSS6.8AI score0.00487EPSS
CVE
CVE
added 2025/09/01 2:32 a.m.21 views

CVE-2025-9757

CVE-2025-9757 affects Campcodes/SourceCodester Courier Management System v1.0. The vulnerability is a SQL injection in the /ajax.php Login function caused by manipulating the email parameter. It is remotely exploitable and reportedly disclosed publicly. Connected sources corroborate the issue and...

9.8CVSS7.3AI score0.00415EPSS
Web
CVE
CVE
added 2025/09/01 3:32 a.m.21 views

CVE-2025-9759

CVE-2025-9759 affects Campcodes/SourceCodester Courier Management System v1.0. The vulnerable component is the Signup function in /ajax.php, where manipulation of the lastname parameter results in a SQL injection. Attacks can be executed remotely and exploits have been publicized. Public-facing C...

9.8CVSS7.4AI score0.00383EPSS
Web
CVE
CVE
added 2025/07/26 11:32 a.m.20 views

CVE-2025-8187

The CVE-2025-8187 entry applies to Campcodes Courier Management System 1.0. Affected component: the file /edit_parcel.php, where manipulating the ID parameter enables SQL injection. Root cause: input from a parameter is unsafely interpolated into SQL, allowing remote execution of injected queries...

8.8CVSS6.7AI score0.00382EPSS
CVE
CVE
added 2025/07/26 12:2 p.m.20 views

CVE-2025-8188

CVE-2025-8188 affects Campcodes Courier Management System 1.0. The vulnerability is an SQL injection in the unknown portion of the file /edit_staff.php triggered by manipulating the ID argument. It allows remote initiation of an attack and, according to the record, the exploit has been disclosed ...

8.8CVSS6.8AI score0.00382EPSS
CVE
CVE
added 2025/07/26 12:32 p.m.18 views

CVE-2025-8189

CVE-2025-8189 affects Campcodes Courier Management System 1.0. A SQL injection arises from manipulating the ID parameter in the file /edit_user.php (reported as /edit user.php in some sources). Exploitation is described as remote with publicly disclosed exploit code; multiple databases flag it as...

8.8CVSS6.9AI score0.00382EPSS
CVE
CVE
added 2025/07/27 12:2 p.m.17 views

CVE-2025-8230

The CVE-2025-8230 entry concerns Campcodes Courier Management System 1.0, with an SQL injection in /manage_user.php via the ID parameter. The vulnerability arises from improper handling of the parameter, allowing remote exploitation with no user interaction. Per NVD, CVSSv3.1 scores: High impact ...

8.8CVSS6.9AI score0.00357EPSS