CVE-2025-14664

Medium CVSS: 6.9

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/view_unit.php. The manipulation of the argument chkId[] leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Vendor

Campcodes

Product

Supplier Management System

CWE

CWE-74

Yayın Tarihi

2025-12-14 15:15:46

Güncelleme

2025-12-16 20:09:01

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Supplier Management System MEDIUM Campcodes 2025

Referanslar

https://github.com/louxiadelaolitou/CVE/issues/3 https://vuldb.com/?ctiid.336396 https://vuldb.com/?id.336396 https://vuldb.com/?submit.714163 https://www.campcodes.com/

Benzer Kayıtlar

Medium

CVE-2026-0597

A flaw has been found in Campcodes Supplier Management System 1.0. Affected by this issue is some unknown functionality…

Medium

CVE-2025-15404

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an un…

Medium

CVE-2025-15214

A vulnerability was found in Campcodes Park Ticketing System 1.0. The impacted element is the function save_pricing of t…

Medium

CVE-2025-15206

A flaw has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /admin/a…

Medium

CVE-2025-15207

A vulnerability has been found in Campcodes Supplier Management System 1.0. Affected is an unknown function of the file…

Medium

CVE-2025-15188

A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affe…