A vulnerability was determined in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown function of the file /ajax.php?action=save_supplier. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.
References
Link | Resource |
---|---|
https://github.com/zzb1388/cve/issues/80 | Exploit Issue Tracking Third Party Advisory |
https://vuldb.com/?ctiid.323849 | Permissions Required VDB Entry |
https://vuldb.com/?id.323849 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.646971 | Third Party Advisory VDB Entry |
https://www.campcodes.com/ | Product |
Configurations
History
18 Sep 2025, 19:45
Type | Values Removed | Values Added |
---|---|---|
First Time |
Campcodes grocery Sales And Inventory System
Campcodes |
|
CPE | cpe:2.3:a:campcodes:grocery_sales_and_inventory_system:1.0:*:*:*:*:*:*:* | |
References | () https://github.com/zzb1388/cve/issues/80 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://vuldb.com/?ctiid.323849 - Permissions Required, VDB Entry | |
References | () https://vuldb.com/?id.323849 - Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?submit.646971 - Third Party Advisory, VDB Entry | |
References | () https://www.campcodes.com/ - Product |
14 Sep 2025, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-09-14 23:15
Updated : 2025-09-18 19:45
NVD link : CVE-2025-10415
Mitre link : CVE-2025-10415
CVE.ORG link : CVE-2025-10415
JSON object : View
Products Affected
campcodes
- grocery_sales_and_inventory_system