CVE-2025-13555

Medium CVSS: 6.9

A vulnerability was detected in Campcodes School File Management System 1.0. Affected is an unknown function of the file /index.php of the component Login. Performing a manipulation of the argument stud_no results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used.

Vendor

Campcodes

Product

School File Management System

CWE

CWE-74

Yayın Tarihi

2025-11-23 16:15:45

Güncelleme

2026-02-24 07:16:51

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 School File Management System MEDIUM Campcodes 2025

Referanslar

https://github.com/arpcyber070/CVE/issues/4 https://vuldb.com/?ctiid.333322 https://vuldb.com/?id.333322 https://vuldb.com/?submit.696516 https://www.campcodes.com/ https://github.com/arpcyber070/CVE/issues/4

Benzer Kayıtlar

Medium

CVE-2026-0597

A flaw has been found in Campcodes Supplier Management System 1.0. Affected by this issue is some unknown functionality…

Medium

CVE-2025-15404

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an un…

Medium

CVE-2025-15214

A vulnerability was found in Campcodes Park Ticketing System 1.0. The impacted element is the function save_pricing of t…

Medium

CVE-2025-15206

A flaw has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /admin/a…

Medium

CVE-2025-15207

A vulnerability has been found in Campcodes Supplier Management System 1.0. Affected is an unknown function of the file…

Medium

CVE-2025-15188

A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affe…