Total
10 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-13424 | 1 Campcodes | 1 Supplier Management System | 2025-11-21 | 5.8 MEDIUM | 4.7 MEDIUM |
| A vulnerability has been found in Campcodes Supplier Management System 1.0. This affects an unknown function of the file /admin/add_product.php. The manipulation of the argument txtProductName leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. | |||||
| CVE-2025-13259 | 1 Campcodes | 1 Supplier Management System | 2025-11-19 | 6.5 MEDIUM | 6.3 MEDIUM |
| A flaw has been found in Campcodes Supplier Management System 1.0. This affects an unknown function of the file /manufacturer/edit_unit.php. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used. | |||||
| CVE-2025-13260 | 1 Campcodes | 1 Supplier Management System | 2025-11-19 | 6.5 MEDIUM | 6.3 MEDIUM |
| A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/edit_product.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. | |||||
| CVE-2025-13291 | 1 Campcodes | 1 Supplier Management System | 2025-11-19 | 7.5 HIGH | 7.3 HIGH |
| A vulnerability was found in Campcodes Supplier Management System 1.0. This affects an unknown part of the file /manufacturer/confirm_order.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used. | |||||
| CVE-2024-22627 | 1 Campcodes | 1 Supplier Management System | 2025-06-20 | N/A | 7.2 HIGH |
| Complete Supplier Management System v1.0 is vulnerable to SQL Injection via /Supply_Management_System/admin/edit_distributor.php?id=. | |||||
| CVE-2024-22625 | 1 Campcodes | 1 Supplier Management System | 2025-06-04 | N/A | 7.2 HIGH |
| Complete Supplier Management System v1.0 is vulnerable to SQL Injection via /Supply_Management_System/admin/edit_category.php?id=. | |||||
| CVE-2024-22626 | 1 Campcodes | 1 Supplier Management System | 2025-06-04 | N/A | 7.2 HIGH |
| Complete Supplier Management System v1.0 is vulnerable to SQL Injection via /Supply_Management_System/admin/edit_retailer.php?id=. | |||||
| CVE-2024-41550 | 1 Campcodes | 1 Supplier Management System | 2025-05-28 | N/A | 7.2 HIGH |
| CampCodes Supplier Management System v1.0 is vulnerable to SQL injection via Supply_Management_System/admin/view_invoice_items.php?id= . | |||||
| CVE-2024-41551 | 1 Campcodes | 1 Supplier Management System | 2024-11-21 | N/A | 9.8 CRITICAL |
| CampCodes Supplier Management System v1.0 is vulnerable to SQL injection via Supply_Management_System/admin/view_order_items.php?id= . | |||||
| CVE-2024-8344 | 1 Campcodes | 1 Supplier Management System | 2024-09-03 | 6.5 MEDIUM | 8.8 HIGH |
| A vulnerability has been found in Campcodes Supplier Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/edit_area.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. | |||||