21 matches found
CVE-2025-9751
CVE-2025-9751 affects Campcodes Online Learning Management System 1.0. The issue is a SQL injection in the login flow, triggered by manipulating the Username argument in the file /login.php. It is described as exploitable remotely with publicly available exploits, implying potential remote, unaut...
CVE-2025-9763
CVE-2025-9763 affects Campcodes Online Learning Management System v1.0. The vulnerability is an SQL injection in the file /student_signup.php triggered by manipulating the Username parameter, allowing remote exploitation. Public exploits have been observed. Impact is reported as high/critical acr...
CVE-2025-10781
CVE-2025-10781 affects Campcodes Online Learning Management System 1.0. The vulnerability is in the file /admin/edit_class.php, where manipulation of the parameter named class_name enables a SQL injection. The description states the attack can be executed remotely and the exploit is publicly avai...
CVE-2025-10783
CVE-2025-10783 affects Campcodes Online Learning Management System v1.0; vulnerability in /admin/add_subject.php where manipulating the subject_code parameter can cause SQL injection. Exploitation is remote and public exploits exist. No official patch details in provided docs; consider temporary ...
CVE-2025-10784
The CVE-2025-10784 affects Campcodes Online Learning Management System (version 1.0). Affects the /admin/edit_subject.php functionality where manipulating the subject_code parameter leads to SQL injection. The vulnerability is remotely exploitable and the exploit has been publicly disclosed. Conn...
CVE-2025-9750
Campcodes Online Learning Management System 1.0 contains a SQL injection in /admin/login.php triggered by manipulating the Username parameter. The vulnerability allows remote exploitation and exploitation is publicly available. Multiple assessments indicate high/severe impact on confidentiality, ...
CVE-2025-10782
Campcodes Online Learning Management System 1.0 is affected by a SQL injection in /admin/class.php via manipulation of the class_name parameter. The issue is a remote vulnerability and the exploit has been released publicly. Root cause: improper handling of the class_name argument in an unknown f...
CVE-2025-10810
CVE-2025-10810 affects Campcodes Online Learning Management System v1.0. The vulnerability is a SQL injection in the unknown function of /admin/edit_user.php triggered by manipulating the firstname parameter, exploitable remotely with public exploit available. Documented impact includes high conf...
CVE-2025-10817
CVE-2025-10817 affects Campcodes Online Learning Management System 1.0. The vulnerability is a SQL injection in the /admin/admin_user.php file caused by manipulating the firstname parameter. The issue can be exploited remotely and the exploit is publicly available. Multiple connected sources conf...
CVE-2025-11061
CVE-2025-11061 affects Campcodes Online Learning Management System 1.0. The vulnerability is a SQL injection in /admin/edit_student.php via manipulation of the cys parameter, reported as exploitable remotely with an exploit published. Public references consistently describe the issue without deta...
CVE-2025-11062
CVE-2025-11062 – Campcodes Online Learning Management System 1.0 is affected by an SQL injection in the admin/save_student.php file via manipulation of the class_id parameter. The issue is exploitable remotely; exploit publicly disclosed. Root cause: unsafe handling/validation of input in the vul...
CVE-2025-11063
The CVE-2025-11063 entry concerns Campcodes Online Learning Management System v1.0. The vulnerability resides in the /admin/edit_department.php handler, where manipulating the d parameter leads to a SQL injection. This exploitable condition can be triggered remotely, and publicly available exploi...
CVE-2025-11077
CVE-2025-11077 affects Campcodes Online Learning Management System 1.0. The vulnerability is a SQL injection in the /admin/add_content.php file, triggered by manipulating the Title argument. It is exploitable remotely and has been publicly disclosed. The connected reports consistently describe th...
CVE-2025-11064
The CVE-2025-11064 vulnerability affects Campcodes Online Learning Management System 1.0, with the flaw located in an unknown function of /admin/teachers.php where manipulating the department parameter triggers a SQL injection. The issue is exploitable remotely and, per connected sources, the exp...
CVE-2025-11075
Campcodes Online Learning Management System 1.0 contains a SQL injection in the admin/de_activate.php file. The vulnerability arises from manipulating the ID parameter, enabling remote exploitation. Multiple connected sources confirm the issue and indicate an attacker could exploit remotely with ...
CVE-2025-11076
The CVE-2025-11076 entry details a SQL injection in Campcodes Online Learning Management System 1.0, caused by manipulating the department parameter in /admin/edit_teacher.php. It supports remote exploitation and that an exploit has been published. The connected documents confirm the vulnerable c...
CVE-2025-10809
CVE-2025-10809 affects Campcodes Online Learning Management System 1.0. The vulnerability is an SQL injection in the /admin/department.php file caused by manipulating the unknown function argument d . The issue is exploitable remotely, and the exploit has been publicly disclosed. Public records d...
CVE-2025-11102
CVE-2025-11102 affects Campcodes Online Learning Management System (v1.0). A vulnerability in an unknown function within /admin/edit_content.php allows manipulation of the Title parameter to trigger SQL injection. Exploitation can be conducted remotely, and public exploits are noted. Several sour...
CVE-2025-11555
CVE-2025-11555 concerns Campcodes Online Learning Management System v1.0. Multiple connected sources confirm a SQL injection in the /admin/calendar_of_events.php script caused by unsafely manipulating the date_start parameter. The vulnerability is exploitable remotely and exploit code is publicly...
CVE-2025-11110
CVE-2025-11110 affects Campcodes Online Learning Management System 1.0. The vulnerability is an SQL injection in the /admin/school_year.php file triggered by manipulating the school_year parameter, allowing remote exploitation. Several connected sources confirm exploitation has been publicly rele...
CVE-2025-9786
CVE-2025-9786 affects Campcodes Online Learning Management System 1.0. The flaw is in an unknown function of /teacher_signup.php where manipulating the firstname parameter triggers SQL injection. This is a remote exploit with public PoC materials noted across multiple feeds; other parameters may ...