10 matches found
CVE-2025-8190
The CVE-2025-8190 entry concerns Campcodes Courier Management System 1.0. The affected component is the /print_pdets.php processing logic, where manipulation of the ids parameter leads to SQL injection. Documents indicate the issue can be exploited remotely and that the exploit has been publicly ...
CVE-2025-8254
CVE-2025-8254 affects Campcodes Courier Management System 1.0 via SQL injection in the /view_parcel.php file, caused by unsafely handling the ID parameter. The vulnerability is exploitable remotely and has public exploits; risk is described as critical by multiple sources. Attacks could disclose ...
CVE-2025-8186
CVE-2025-8186 affects Campcodes Courier Management System 1.0. A SQL injection vulnerability exists in an unknown function of /edit_branch.php triggered by manipulating the ID parameter. Exploitation can be performed remotely and public disclosure exists. The CVE has various scores indicating MED...
CVE-2025-8229
CVE-2025-8229 affects Campcodes Courier Management System 1.0. The vulnerability is a SQL injection in the file /parcel_list.php caused by manipulating the parameter s . It can be exploited remotely and the exploit has been publicly disclosed. Multiple connected sources corroborate the issue and ...
CVE-2025-9757
CVE-2025-9757 affects Campcodes/SourceCodester Courier Management System v1.0. The vulnerability is a SQL injection in the /ajax.php Login function caused by manipulating the email parameter. It is remotely exploitable and reportedly disclosed publicly. Connected sources corroborate the issue and...
CVE-2025-9759
CVE-2025-9759 affects Campcodes/SourceCodester Courier Management System v1.0. The vulnerable component is the Signup function in /ajax.php, where manipulation of the lastname parameter results in a SQL injection. Attacks can be executed remotely and exploits have been publicized. Public-facing C...
CVE-2025-8187
The CVE-2025-8187 entry applies to Campcodes Courier Management System 1.0. Affected component: the file /edit_parcel.php, where manipulating the ID parameter enables SQL injection. Root cause: input from a parameter is unsafely interpolated into SQL, allowing remote execution of injected queries...
CVE-2025-8188
CVE-2025-8188 affects Campcodes Courier Management System 1.0. The vulnerability is an SQL injection in the unknown portion of the file /edit_staff.php triggered by manipulating the ID argument. It allows remote initiation of an attack and, according to the record, the exploit has been disclosed ...
CVE-2025-8189
CVE-2025-8189 affects Campcodes Courier Management System 1.0. A SQL injection arises from manipulating the ID parameter in the file /edit_user.php (reported as /edit user.php in some sources). Exploitation is described as remote with publicly disclosed exploit code; multiple databases flag it as...
CVE-2025-8230
The CVE-2025-8230 entry concerns Campcodes Courier Management System 1.0, with an SQL injection in /manage_user.php via the ID parameter. The vulnerability arises from improper handling of the parameter, allowing remote exploitation with no user interaction. Per NVD, CVSSv3.1 scores: High impact ...