A vulnerability was found in Campcodes Online Food Ordering System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /routers/user-router.php. The manipulation of the argument t1_verified leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://github.com/wyl091256/CVE/issues/9 | Exploit Issue Tracking Third Party Advisory |
https://vuldb.com/?ctiid.308204 | Permissions Required VDB Entry |
https://vuldb.com/?id.308204 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.566784 | Third Party Advisory VDB Entry |
https://www.campcodes.com/ | Product |
Configurations
History
13 May 2025, 18:57
Type | Values Removed | Values Added |
---|---|---|
First Time |
Campcodes
Campcodes online Food Ordering System |
|
References | () https://github.com/wyl091256/CVE/issues/9 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://vuldb.com/?ctiid.308204 - Permissions Required, VDB Entry | |
References | () https://vuldb.com/?id.308204 - Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?submit.566784 - Third Party Advisory, VDB Entry | |
References | () https://www.campcodes.com/ - Product | |
CPE | cpe:2.3:a:campcodes:online_food_ordering_system:1.0:*:*:*:*:*:*:* |
12 May 2025, 17:32
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
09 May 2025, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-05-09 21:15
Updated : 2025-05-13 18:57
NVD link : CVE-2025-4489
Mitre link : CVE-2025-4489
CVE.ORG link : CVE-2025-4489
JSON object : View
Products Affected
campcodes
- online_food_ordering_system