CVE-2025-10848

Medium CVSS: 5.3

A vulnerability was identified in Campcodes Society Membership Information System 1.0. This issue affects some unknown processing of the file /check_student.php. Such manipulation of the argument student_id leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used.

Vendor

Campcodes

Product

Society Membership Information System

CWE

CWE-74

Yayın Tarihi

2025-09-23 08:15:38

Güncelleme

2025-09-25 16:11:48

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Society Membership Information System MEDIUM Campcodes 2025

Referanslar

https://vuldb.com/?ctiid.325209 https://vuldb.com/?id.325209 https://vuldb.com/?submit.657937 https://www.campcodes.com/ https://www.yuque.com/yuqueyonghuexlgkz/zepczx/mri9nrk1lh7ev7r6?singleDoc

Benzer Kayıtlar

Medium

CVE-2026-0597

A flaw has been found in Campcodes Supplier Management System 1.0. Affected by this issue is some unknown functionality…

Medium

CVE-2025-15404

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an un…

Medium

CVE-2025-15214

A vulnerability was found in Campcodes Park Ticketing System 1.0. The impacted element is the function save_pricing of t…

Medium

CVE-2025-15206

A flaw has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /admin/a…

Medium

CVE-2025-15207

A vulnerability has been found in Campcodes Supplier Management System 1.0. Affected is an unknown function of the file…

Medium

CVE-2025-15188

A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affe…