Lucene search
K
CampcodesOnline Learning Management System

21 matches found

CVE
CVE
added 2025/08/31 11:32 p.m.27 views

CVE-2025-9751

CVE-2025-9751 affects Campcodes Online Learning Management System 1.0. The issue is a SQL injection in the login flow, triggered by manipulating the Username argument in the file /login.php. It is described as exploitable remotely with publicly available exploits, implying potential remote, unaut...

9.8CVSS7.4AI score0.00383EPSS
CVE
CVE
added 2025/09/01 5:2 a.m.25 views

CVE-2025-9763

CVE-2025-9763 affects Campcodes Online Learning Management System v1.0. The vulnerability is an SQL injection in the file /student_signup.php triggered by manipulating the Username parameter, allowing remote exploitation. Public exploits have been observed. Impact is reported as high/critical acr...

9.8CVSS7.4AI score0.00387EPSS
CVE
CVE
added 2025/09/22 4:2 a.m.23 views

CVE-2025-10781

CVE-2025-10781 affects Campcodes Online Learning Management System 1.0. The vulnerability is in the file /admin/edit_class.php, where manipulation of the parameter named class_name enables a SQL injection. The description states the attack can be executed remotely and the exploit is publicly avai...

9.8CVSS7.3AI score0.00387EPSS
Web
CVE
CVE
added 2025/09/22 5:2 a.m.20 views

CVE-2025-10783

CVE-2025-10783 affects Campcodes Online Learning Management System v1.0; vulnerability in /admin/add_subject.php where manipulating the subject_code parameter can cause SQL injection. Exploitation is remote and public exploits exist. No official patch details in provided docs; consider temporary ...

9.8CVSS7.2AI score0.00387EPSS
Web
CVE
CVE
added 2025/09/22 5:32 a.m.20 views

CVE-2025-10784

The CVE-2025-10784 affects Campcodes Online Learning Management System (version 1.0). Affects the /admin/edit_subject.php functionality where manipulating the subject_code parameter leads to SQL injection. The vulnerability is remotely exploitable and the exploit has been publicly disclosed. Conn...

9.8CVSS7.3AI score0.00505EPSS
Web
CVE
CVE
added 2025/08/31 11:2 p.m.20 views

CVE-2025-9750

Campcodes Online Learning Management System 1.0 contains a SQL injection in /admin/login.php triggered by manipulating the Username parameter. The vulnerability allows remote exploitation and exploitation is publicly available. Multiple assessments indicate high/severe impact on confidentiality, ...

9.8CVSS7.4AI score0.00383EPSS
Web
CVE
CVE
added 2025/09/22 4:32 a.m.19 views

CVE-2025-10782

Campcodes Online Learning Management System 1.0 is affected by a SQL injection in /admin/class.php via manipulation of the class_name parameter. The issue is a remote vulnerability and the exploit has been released publicly. Root cause: improper handling of the class_name argument in an unknown f...

9.8CVSS7.2AI score0.00387EPSS
Web
CVE
CVE
added 2025/09/22 6:32 p.m.19 views

CVE-2025-10810

CVE-2025-10810 affects Campcodes Online Learning Management System v1.0. The vulnerability is a SQL injection in the unknown function of /admin/edit_user.php triggered by manipulating the firstname parameter, exploitable remotely with public exploit available. Documented impact includes high conf...

9.8CVSS6.7AI score0.00629EPSS
Web
CVE
CVE
added 2025/09/22 10:2 p.m.19 views

CVE-2025-10817

CVE-2025-10817 affects Campcodes Online Learning Management System 1.0. The vulnerability is a SQL injection in the /admin/admin_user.php file caused by manipulating the firstname parameter. The issue can be exploited remotely and the exploit is publicly available. Multiple connected sources conf...

9.8CVSS6.9AI score0.00384EPSS
Web
CVE
CVE
added 2025/09/27 12:32 p.m.19 views

CVE-2025-11061

CVE-2025-11061 affects Campcodes Online Learning Management System 1.0. The vulnerability is a SQL injection in /admin/edit_student.php via manipulation of the cys parameter, reported as exploitable remotely with an exploit published. Public references consistently describe the issue without deta...

9.8CVSS6.7AI score0.00441EPSS
Web
CVE
CVE
added 2025/09/27 1:2 p.m.19 views

CVE-2025-11062

CVE-2025-11062 – Campcodes Online Learning Management System 1.0 is affected by an SQL injection in the admin/save_student.php file via manipulation of the class_id parameter. The issue is exploitable remotely; exploit publicly disclosed. Root cause: unsafe handling/validation of input in the vul...

9.8CVSS7.3AI score0.00441EPSS
Web
CVE
CVE
added 2025/09/27 1:32 p.m.19 views

CVE-2025-11063

The CVE-2025-11063 entry concerns Campcodes Online Learning Management System v1.0. The vulnerability resides in the /admin/edit_department.php handler, where manipulating the d parameter leads to a SQL injection. This exploitable condition can be triggered remotely, and publicly available exploi...

9.8CVSS6.9AI score0.00441EPSS
Web
CVE
CVE
added 2025/09/27 8:2 p.m.19 views

CVE-2025-11077

CVE-2025-11077 affects Campcodes Online Learning Management System 1.0. The vulnerability is a SQL injection in the /admin/add_content.php file, triggered by manipulating the Title argument. It is exploitable remotely and has been publicly disclosed. The connected reports consistently describe th...

9.8CVSS6.7AI score0.00387EPSS
Web
CVE
CVE
added 2025/09/27 2:2 p.m.18 views

CVE-2025-11064

The CVE-2025-11064 vulnerability affects Campcodes Online Learning Management System 1.0, with the flaw located in an unknown function of /admin/teachers.php where manipulating the department parameter triggers a SQL injection. The issue is exploitable remotely and, per connected sources, the exp...

9.8CVSS6.7AI score0.00441EPSS
Web
CVE
CVE
added 2025/09/27 7:2 p.m.18 views

CVE-2025-11075

Campcodes Online Learning Management System 1.0 contains a SQL injection in the admin/de_activate.php file. The vulnerability arises from manipulating the ID parameter, enabling remote exploitation. Multiple connected sources confirm the issue and indicate an attacker could exploit remotely with ...

9.8CVSS6.8AI score0.00441EPSS
Web
CVE
CVE
added 2025/09/27 7:32 p.m.18 views

CVE-2025-11076

The CVE-2025-11076 entry details a SQL injection in Campcodes Online Learning Management System 1.0, caused by manipulating the department parameter in /admin/edit_teacher.php. It supports remote exploitation and that an exploit has been published. The connected documents confirm the vulnerable c...

9.8CVSS6.5AI score0.00441EPSS
Web
CVE
CVE
added 2025/09/22 6:2 p.m.16 views

CVE-2025-10809

CVE-2025-10809 affects Campcodes Online Learning Management System 1.0. The vulnerability is an SQL injection in the /admin/department.php file caused by manipulating the unknown function argument d . The issue is exploitable remotely, and the exploit has been publicly disclosed. Public records d...

9.8CVSS7.3AI score0.00518EPSS
Web
CVE
CVE
added 2025/09/28 7:32 a.m.16 views

CVE-2025-11102

CVE-2025-11102 affects Campcodes Online Learning Management System (v1.0). A vulnerability in an unknown function within /admin/edit_content.php allows manipulation of the Title parameter to trigger SQL injection. Exploitation can be conducted remotely, and public exploits are noted. Several sour...

9.8CVSS6.7AI score0.00384EPSS
Web
CVE
CVE
added 2025/10/09 8:32 p.m.16 views

CVE-2025-11555

CVE-2025-11555 concerns Campcodes Online Learning Management System v1.0. Multiple connected sources confirm a SQL injection in the /admin/calendar_of_events.php script caused by unsafely manipulating the date_start parameter. The vulnerability is exploitable remotely and exploit code is publicly...

9.8CVSS6.8AI score0.00391EPSS
Web
CVE
CVE
added 2025/09/28 4:2 p.m.15 views

CVE-2025-11110

CVE-2025-11110 affects Campcodes Online Learning Management System 1.0. The vulnerability is an SQL injection in the /admin/school_year.php file triggered by manipulating the school_year parameter, allowing remote exploitation. Several connected sources confirm exploitation has been publicly rele...

9.8CVSS6.7AI score0.00441EPSS
Web
CVE
CVE
added 2025/09/01 3:32 p.m.15 views

CVE-2025-9786

CVE-2025-9786 affects Campcodes Online Learning Management System 1.0. The flaw is in an unknown function of /teacher_signup.php where manipulating the firstname parameter triggers SQL injection. This is a remote exploit with public PoC materials noted across multiple feeds; other parameters may ...

9.8CVSS7.4AI score0.00384EPSS